[Outages-discussion] DNS server caused provincial-wide outage
Frank Bulk
frnkblk at iname.com
Tue May 26 11:59:46 EDT 2015
Same here, and one in a different AS.
Frank
-----Original Message-----
From: Bill Wichers [mailto:billw at waveform.net]
Sent: Tuesday, May 26, 2015 9:58 AM
To: 'Joe Abley'; 'Frank Bulk'
Cc: outages-discussion at outages.org
Subject: RE: [Outages-discussion] DNS server caused provincial-wide outage
It's pretty easy to just add a second, different server into the other "DNS
Server" box on just about any OS too.
I see so many users that only have one DNS server and that's another recipe
for disaster :-)
All we do here is run a server in each physical datacenter, all on different
subnets. Those are what we give out to our customers. Chances of all of them
being offline at the same time is vanishingly small.
-Bill
[snip]
> Correlates well with other "nation! wide! internet! outages!" reported by
the
> national press in Canada in recent years which, with a small amount of
> googling, reveals workarounds such as "change your DNS setting to
8.8.8.8".
>
> People (perhaps especially Telcos) continue to believe that "carrier
grade"
> when applied to DNS resolution means you must have layers of load-
> balancers and firewalls in front of the machines answering the queries,
> because that's how "carrier grade" is achieved.
>
> Out here in the real world, we know that any attempt to keep state on the
> path between clients and servers of a stateless protocol, especially one
with
> lots of clients where transactions are very short-lived, is a recipe for
flames
> and carnage.
>
> I know nothing at all about what actually happened at SaskTel. But I'll
bet you
> $5 I'm on the right track.
>
>
> Joe
> _______________________________________________
> Outages-discussion mailing list
> Outages-discussion at outages.org
> https://puck.nether.net/mailman/listinfo/outages-discussion
More information about the Outages-discussion
mailing list