I will say edge DNS servers reduce client config complexity, even if you
have DHCP, and increase resiliency of the initial resolver.
Where it's true with DHCP you can change the DHCP server options it doesn't
help if someone just got a 4 day lease and then the DNS server dies.
Additionally the
On 5/8/22 5:58 AM, Tony Finch wrote:
Regarding anycast, it isn't necessary for internal authoritative
servers unless your organization is really huge (and probably not
even then): it is simpler to just use the DNS's standard reliabilty
features. All you need to do is have more than one
Tom wrote:
> I'm wondering about the value of the "Length"-field in the dnssec-policy
> state-file output, which results in "Length: 256" for domains, which are
> signed with algorithm 13 (ECDSAP256SHA256)
That's the size of the cryptographic modulus, i.e. the size of the numbers
in the guts of
3 matches
Mail list logo
