[c-nsp] Cache DNS servers
Roland Dobbins
rdobbins at arbor.net
Tue Dec 1 23:23:27 EST 2015
On 2 Dec 2015, at 10:02, Nathan Ward wrote:
> I have tested similar topologies in anger and haven’t found that the
> benefit (which is fairly small) is worth it for the added complexity.
One benefit is that if there's need to block/alter a particular response
(say, for a botnet C&C), there's a centralized place to do it.
Logical functional bulkheading is also quite useful from an availability
perspective.
-----------------------------------
Roland Dobbins <rdobbins at arbor.net>
More information about the cisco-nsp
mailing list