On Wed, 21 Jan 2015 16:58:32 -0500, Christopher Morrow wrote: >On Wed, Jan 21, 2015 at 4:53 PM, John Heidemann <[email protected]> wrote: >> I don't see how DoS is an argument against TCP for DNS. (Unless one >> assumes hardware and software at the servers is fixed to something like >> 2004 standards.) What am I missing? > >What's the average client load expected (number of unique clients in >the timeout of the tcp connection expected) for an authoritative >server today? (say an enterprise hosted server, and then someone that >is a large domain aggregator) > >What is the same curve for a recursive server? (again, a small >isp/enterprise vs a large provider) > >What impact will changing to longer lived persistent tcp connections >have on hardware and network capacity planning?
Those are good questions, and take some time to answer. We try to speak to them in a tech report at <http://www.isi.edu/~johnh/PAPERS/Zhu14b.html> It doesn't seem useful copy and past long quotes from that here, but the pointers are: >What's the average client load expected (number of unique clients in >the timeout of the tcp connection expected) for an authoritative >server today? (say an enterprise hosted server, and then someone that >is a large domain aggregator) > >What is the same curve for a recursive server? (again, a small >isp/enterprise vs a large provider) [Zhu14b], figure 3a and 3b, with discussion in section 5.3. >What impact will changing to longer lived persistent tcp connections >have on hardware and network capacity planning? See section 5.2 about memory usage, and appendix H for a long discussion about deployment issues. -John Heidemann _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
