Re: NS failover as opposed to A record failover

2020-02-26 Thread Scott A. Wozny
Thank you for the feedback, Tony. I think a better understanding of what's going on under the hood will prove useful in both designing my operational management strategy as well as just talking me down off the ledge. :) Much obliged. :) Scott From: Tony F

Re: NS failover as opposed to A record failover

2020-02-26 Thread Scott A. Wozny
Thanks for the feedback, Bob. This is encouraging news. I think now I need to do some testing to see what works best for my application. Scott From: Bob Harold Sent: February 26, 2020 9:02 AM To: Mark Andrews Cc: Scott A. Wozny ; bind-users@lists.isc.org

Re: NS failover as opposed to A record failover

2020-02-26 Thread Scott A. Wozny
Thanks very much for the feedback. I clearly have more research to do. :) Scott From: Mark Andrews Sent: February 25, 2020 6:38 PM To: Scott A. Wozny Cc: bind-users@lists.isc.org Subject: Re: NS failover as opposed to A record failover > On 26 Feb 2020, a

Re: bind as "reverse-proxy"

2020-02-26 Thread Erich Eckner
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Wed, 26 Feb 2020, Matus UHLAR - fantomas wrote: On 26.02.20 15:28, Erich Eckner wrote: is it possible to set up a zone in bind similar to a http(s) reverse proxy: No. DNS is very far from proxying. 1. The server appears authoritative to cli

Re: bind as "reverse-proxy"

2020-02-26 Thread Tony Finch
Erich Eckner wrote: > > is it possible to set up a zone in bind similar to a http(s) reverse > proxy: You're looking for dnsdist https://dnsdist.org/ Tony. -- f.anthony.n.finchhttp://dotat.at/ Fitzroy: West 5, increasing 6 to gale 8. Rough or very rough. Rain or showers. Good, occasionally

Re: NS failover as opposed to A record failover

2020-02-26 Thread Tony Finch
Scott A. Wozny wrote: > > Failures aside, I’m worried about creating a bad user experience EVERY > time I need to take a DNS server down for patching. I generally let resolvers handle retry/failover when I'm patching my authoritative servers. Each resolver that encounters an authoritative server

Re: bind as "reverse-proxy"

2020-02-26 Thread Matus UHLAR - fantomas
On 26.02.20 15:28, Erich Eckner wrote: is it possible to set up a zone in bind similar to a http(s) reverse proxy: No. DNS is very far from proxying. 1. The server appears authoritative to clients (the consulted server is indeed authoritative). 2. Each request is passed on to the other serv

bind as "reverse-proxy"

2020-02-26 Thread Erich Eckner
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi, is it possible to set up a zone in bind similar to a http(s) reverse proxy: 1. The server appears authoritative to clients (the consulted server is indeed authoritative). 2. Each request is passed on to the other server (or served from ca

Re: NS failover as opposed to A record failover

2020-02-26 Thread Bob Harold
On Tue, Feb 25, 2020 at 6:38 PM Mark Andrews wrote: > > > On 26 Feb 2020, at 09:51, Scott A. Wozny wrote: > > > > I know this isn’t a question ABOUT BIND, per se, but I think is still a > question bind-users might have an answer to. I’ve seen various failover > questions on the list, but nothing