From owner-freebsd-isp@FreeBSD.ORG Mon Aug 4 22:42:52 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EDCAE37B401 for ; Mon, 4 Aug 2003 22:42:52 -0700 (PDT) Received: from stingray.amis.net (stingray.amis.net [212.18.32.19]) by mx1.FreeBSD.org (Postfix) with ESMTP id 824F743F3F for ; Mon, 4 Aug 2003 22:42:51 -0700 (PDT) (envelope-from blaz@si.FreeBSD.org) Received: from localhost (localhost [127.0.0.1]) by stingray.amis.net (Postfix) with ESMTP id B4D6F3865FC; Tue, 5 Aug 2003 07:42:40 +0200 (CEST) Received: from stingray.amis.net ([127.0.0.1]) by localhost (stingray.amis.net [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 73114-01-7; Tue, 5 Aug 2003 07:42:39 +0200 (CEST) Received: from titanic.medinet.si (titanic.medinet.si [212.18.42.5]) by stingray.amis.net (Postfix) with ESMTP id C96CB38659A; Tue, 5 Aug 2003 07:42:21 +0200 (CEST) Date: Tue, 5 Aug 2003 07:42:21 +0200 (CEST) From: Blaz Zupan X-X-Sender: blaz@titanic.medinet.si To: "David J. Hughes" In-Reply-To: <20030804152939.F97726@elk.hughes.com.au> Message-ID: <20030805073757.G78439@titanic.medinet.si> References: <20030804182222.A5C055553E@titanic.medinet.si> <20030804152939.F97726@elk.hughes.com.au> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by Amis Safe Mail cc: freebsd-isp@freebsd.org Subject: Re: DNS Server Farm X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Aug 2003 05:42:53 -0000 > An anycast / BGP solution assumes that the application will never fail > without taking the box down. If your DNS code falls over (or is stopped > etc) then your customers are going to lose. Running a watchdog that checks if the DNS code is alive is next to trivial. If the DNS server fails, either restart it or take down the routing protocol so the system fails over to the next anycast box. If the machine stops to the point that the watchdog is also not working anymore, then the routing protocol doesn't work anymore as well, so you fail over to the next anycast box. > Seeing as a "real" load balancer, like a ServerIron XL, can be found on > Ebay for next to nothing these days, it's a very workable solution. We > just built such a solution for a network with about 550,000 users and it > works just fine. 2 or 3 good boxes and a load balancer will also be much > cheaper than a box at each pop. But you still have a single point of failure. You have all your boxes located at a single location. If you have a power failure or other catastropic event at that location, your whole DNS setup fails, while the rest of the network works just fine, just without a working DNS server. Same thing if your load balancer fails.