On Dec 5, 2009, at 5:57 AM, Charles Marcus <[email protected]> wrote:
On 12/5/2009 7:01 AM, marrco wrote: And you can also consider in your setup to add these new public dns : 8.8.8.8 and 8.8.4.4 http://code.google.com/speed/public-dns/ http://googlecode.blogspot.com/2009/12/introducing-google-public-dns-new-dns .html Sorry, but I don't think I'll ever trust google with my dns. It took me a while before I was able to trust opendns, but google? Never... A few words of caution on recursive dns providers in regards to ASSP and servers in general. With all, they are fine for home or work use, look at the pros and cons, you decide. OpenDNS prohibits commercial use, meaning servers are out. OpenDNS has bugs in their resolver, which they don't care to fix despite my detailed report. As a resolver on a server, email server specifically... OpenDNS without an account, will auto resolve all domains, there is no such thing as NXDOMAIN to openDNS unless you create an account and turn off all such features. Consider the repercussions of this if you send an email to the wrong domain where you expect it to bounce. Consider the RBL repercussions, or worse, your own internal WL and BL zones you may maintain. This is not a problem with google, they do not alter DNS replies in any way. However, with an email server, your lookups will all be unique. Reverse.Ip.add.re.ss.dnsbl.rbl.whoever.com likely will not be cached by google or openDNS or PowerDNS. If you test non cached lookups for any recursive provider, you will see they are all slow. Their power is in cached lookups. Sub 10ms responses are the norm with cached responses. Greater than 80ms are the norm for non cached. For email servers, public recursive DNS is probably the wrong direction to go in. I know I want a direct line to my wl.mycompany.example.com and bl.mycompany.example.com. Nothing will be faster. If you want, set non local results to forward to google, but I don't see that gaining you much. These are services for consumers, and I would argue detrimental to servers. I love them at home though, wish I could change iPhone settings to use them. Do keep in mind, there are a lot of other nice anycast ip's out there to use, google just seems to be the first to publicy get there. Level3 has always been good to me at 4.2.2.1 to 4.2.2.6, easy to remember, no altering of results, and a solid provider the world over. -- Scott Iphone says hello. ------------------------------------------------------------------------------ Join us December 9, 2009 for the Red Hat Virtual Experience, a free event focused on virtualization and cloud computing. Attend in-depth sessions from your desk. Your couch. Anywhere. http://p.sf.net/sfu/redhat-sfdev2dev _______________________________________________ Assp-test mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-test
