DNS NSD4 Performance Measurements By Wouter Wijngaards NSD 4 is currently in beta and we are expecting a release candidate soon. This is the first of a series of blog-posts in which we describe some findings that may help you to optimize your NSD4 installation. The article also serves as an explanation for differences
Research Using PMTUD for a higher DNS responsiveness By Willem Toorop Motiviation In May 2011 we were notified (from a Japan based enthusiast) that our site wasn’t reachable over IPv6 unless the user lowered the MTU on his machine. This triggered interest in the “Path MTU Discovery black holes” problem [6] [http://tools.ietf.org/html/rfc2923]
DNS Open Recursor Blocked By Wouter Wijngaards We have blocked an open recursive DNS nameserver running at NLnet Labs. This was due to abuse traffic, reflected traffic. Two different types of abuse traffic were pointed at this server: * Queries of type ANY for large DNSSEC data. Sporadic bursts of about 3–5 qps, to
DNS NSD 4 migration and features By Wouter Wijngaards This post describes migration to NSD4 and the new features of NSD4. An overview of the NSD 4 project is here [http://www.nlnetlabs.nl/blog/2012/12/18/nsd-4-0-beta-announcement/]. Migration The old NSD3 config file can be used without changes for NSD4. There are new config
DNS NSD 4.0 Beta: NSD4 sees the light.. By Wouter Wijngaards We are proud to announce a beta version of NSD4.0. With this beta release NSD4.0 is feature complete. Earlier [https://www.nlnetlabs.nl/blog/2012/09/14/nsd4-features/] we described our high-level plans with NSD4; below we describe the features that are available in NSD4.
DNS DNS Response Rate Limiting as implemented in NSD By Wouter Wijngaards (Note 10 Oct 2012: Rate limiting is worked on at this time, and is being tested, it is not available in NSD production code yet). (Update 10 Dec 2012 : changed title to indicate it is based on Vixie and Schryver’s work) Rate Limits Rate limiting is
DNS Howto: Add new RRtypes to NSD People like to put stuff in the DNS. While we could put everything in a TXT record, in general it is better to define a new record type (RRtype). The latest addition is the TLSA record, to support the DANE protocol. The RRtype was added to NSD just one day after the RFC was published.
DNS NSD4 Features By Wouter Wijngaards NSD 4 is under development. The plan is to improve NSD 3 with a number of new features. The main goals are: * More dynamic configuration support * High number of zones supported * It stays the lean and mean, typical secondary authoritative DNS server that you know it for.
