On Mon, Oct 06, 2014 at 10:22:39AM +0200, Jens Wagner wrote:
> >What are the main obstacles? Does, for example, BIND take too long
> >to start/reload? Is adding a new zone too disruptive? Something
> >else?
>
> According to http://unbound.net/ , Unbound is a validating, recursive, and
> caching DNS resolver. So it cannot be used as an auth nameserver.
Sorry, should have said "nsd". I assume same issues as BIND...
> Basically, we are looking for nameservers, that:
>
> 1. allow you to add, remove and update zones online, anytime
> 2. do not 'stutter' or even stop resolving while getting updated, no matter
> if single records are updated, or new zones added
> 3. do not need to keep all zones and records in memory
> 4. support DNSSEC + NSEC3
> 5. use internal caching for performance reasons
>
> PowerDNS provides all of the above, BIND9+DLZ does everything but 5., MyDNS
> does everything but 4. (and is outdated).
> Most servers that are written for TLDs fail at 2. and or 3. Do you know any
> other products? Still hope for BIND10/Bundy.
Thanks, that's roughly the level of detail I was looking for.
--
Viktor.
_______________________________________________
dane mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dane
