BIND9 and empty responses

[A. Khattri]

On Tue, 14 Jun 2005, David Bandel wrote:

> A few days ago, a new client was added.  That client is a "publicist"
> (translation: spammer).  The server is now seeing a 180% increase in
> DNS requests.  The load is always over 2.5, and the traffic is around
> 350kbits/sec, all port 53 traffic.

Our main DNS server never sees loads this high - what sort of machine
is it?

> So I'm going to move the master off to another IP, isolate it, make it
> non-recursive and only respond to the slaves.  The slaves will answer
> all clients and pull zones from the master.

Probably having a caching server in front will help.

dnscache (from tinydns) is good for this kind of thing.


-- 
Aj.