Five strategies to remove single points of DNS failure
The article discusses five strategies for coping with DNS failures and ensuring service reliability. It highlights that while a DNS outage may seem unlikely, recent statistics show that many companies are vulnerable due to using only one provider or having DNS servers on an internal network. The first strategy is understanding root server issues, as there are 13 root name servers responsible for delegating every domain and knowing what could go wrong helps in decision-making. The second strategy involves knowing the issues with TLD (top-level domain) authoritative servers, as not all domains have robust infrastructure to defend against attacks. The third strategy focuses on understanding name server issues and making smart DNS provider choices. The fourth strategy emphasizes taking a preventive approach to avoid renewal issues by regularly checking for upcoming domain expiration or SSL certificates going out of date. Lastly, the fifth strategy suggests safeguarding your ecosystem by using Anycast for everything and not coupling endpoints and DNS zone control in one provider.
Company
Ably
Date published
Oct. 23, 2019
Author(s)
Matthew O'Riordan
Word count
2675
Language
English
Hacker News points
None found.