Name-server redundancy
Blake Hudson
blake at ispn.net
Tue Jun 10 14:54:40 UTC 2014
If you want to ensure well working failover you must, at some point,
test it. Even better, you may want to regularly test it (check out
Netflix's Chaos Monkey).
One way to run a simulation would be to use a firewall rule or static
route to block access between your test client/recursive server and one
or more of the authoritative DNS servers. However, this is no substitute
for an actual test to determine how different client applications will
behave.
--Blake
Sid Shapiro wrote the following on 6/9/2014 4:56 PM:
> Again - thanks for the quick response - that'll teach me to post
> without all the facts. I simply don't remember what the specific error
> was, darn it. It might have been NXDOMAIN or SERVFAIL - I didn't write
> it down.
> The test I was running was on a barely, if ever used, domain, so I was
> pretty sure it wasn't cached anywhere.
>
> I'm trying to figure out ways to test this without taking name servers
> offline :-)
>
> --
> Sid Shapiro sid_shapiro at bio-rad.com <mailto:sid_shapiro at bio-rad.com>
> Bio-Rad Corporate IT - Desk: (510) 741-6846 Mobile: (510) 224-4343
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20140610/0363b7e8/attachment.html>
More information about the bind-users
mailing list