Level3/GTEI well-known DNS down?
Anybody know what is up/down with the GTE/Level3 name-servers used the world over on 4.2.2.1, 4.2.2.2? Suddenly started getting no responses from them for a couple of our side apps. I hope these servers stick around forever, they're kind of an Internet legend. Cheers, Randal
On Sat, Jan 19, 2008 at 02:36:14AM -0700, randal k wrote:
Anybody know what is up/down with the GTE/Level3 name-servers used the world over on 4.2.2.1, 4.2.2.2? Suddenly started getting no responses from them for a couple of our side apps.
Testing from an l3 customer network which got responses and a non-l3 customer network which did not implies that they finally clamped down on non-customer use of their anycasted resolvers.
I hope these servers stick around forever, they're kind of an Internet legend.
Open resolvers are seriously abused by botnets and related baddies. Perhaps you might need to run a set of resolvers, or get your service provider[s] to give you something similar to well-tuned anycasted resolvers. Cheers, Joe -- RSUC / GweepNet / Spunk / FnB / Usenix / SAGE
Anybody know what is up/down with the GTE/Level3 name-servers used the world over on 4.2.2.1, 4.2.2.2? Suddenly started getting no responses from
Not to start a debate but I've used OpenDNS since last year and been VERY happy with it.... use it in situations where there is no localized DNS server available.... And yes, to agree - open resolvers are very badly abused .. I'm surprised it took them this long... Paul -----Original Message----- From: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] On Behalf Of Joe Provo Sent: Saturday, January 19, 2008 10:33 AM To: nanog@nanog.org Subject: Re: Level3/GTEI well-known DNS down? On Sat, Jan 19, 2008 at 02:36:14AM -0700, randal k wrote: them
for a couple of our side apps.
Testing from an l3 customer network which got responses and a non-l3 customer network which did not implies that they finally clamped down on non-customer use of their anycasted resolvers.
I hope these servers stick around forever, they're kind of an Internet legend.
Open resolvers are seriously abused by botnets and related baddies. Perhaps you might need to run a set of resolvers, or get your service provider[s] to give you something similar to well-tuned anycasted resolvers. Cheers, Joe -- RSUC / GweepNet / Spunk / FnB / Usenix / SAGE ---------------------------------------------------------------------------- "The information transmitted is intended only for the person or entity to which it is addressed and contains confidential and/or privileged material. If you received this in error, please contact the sender immediately and then destroy this transmission, including all attachments, without copying, distributing or disclosing same. Thank you."
On Sat, 19 Jan 2008, Paul Stewart wrote:
Not to start a debate but I've used OpenDNS since last year and been VERY happy with it....
It's fine if you don't mind your DNS server lying to you. Tony. -- f.a.n.finch <dot@dotat.at> http://dotat.at/ THAMES DOVER WIGHT PORTLAND PLYMOUTH: SOUTHWEST VEERING NORTHWEST 6 TO GALE 8, BECOMING VARIABLE 3 LATER. MODERATE OR ROUGH. RAIN. MODERATE.
dot@dotat.at (Tony Finch) writes:
Not to start a debate but I've used OpenDNS since last year and been VERY happy with it....
It's fine if you don't mind your DNS server lying to you.
i was told that if one opts out of the nxdomain remapping service, opendns behaves normally ("no lies") and gives good performance. so, while i'll likely continue to run my own recursive resolvers (since it's easy and since i like the low RTT for transactions having high frequency), it's not because i'm avoiding "lies". -- Paul Vixie
On 21 Jan 2008 19:36:04 +0000, Paul Vixie <vixie@isc.org> wrote:
dot@dotat.at (Tony Finch) writes:
Not to start a debate but I've used OpenDNS since last year and been VERY happy with it....
It's fine if you don't mind your DNS server lying to you.
i was told that if one opts out of the nxdomain remapping service, opendns behaves normally ("no lies") and gives good performance. so, while i'll likely continue to run my own recursive resolvers (since it's easy and since i like the low RTT for transactions having high frequency), it's not because i'm avoiding "lies".
OpenDNS is also a 'service' that a user 'opts-in' for.. it's not like some of the other 'services' provided by ISP's that are not 'opt-in' but rather 'opt-out' and potentially detrimental to your internet activities... Everyone has their opinion about OpenDNS, that's cool... but since you choose to use them (or not) it's entirely your 'fault' if you get 'lied' to. I would note that after my initial upset-ed-ness about OpenDNS the fact that you have to choose to use them makes it perfectly fine in my book. (I still use my own resolvers as well, but...) -Chris
Joe Provo wrote:
Open resolvers are seriously abused by botnets and related baddies. Perhaps you might need to run a set of resolvers, or get your service provider[s] to give you something similar to well-tuned anycasted resolvers.
Rumor from a previous discussion of these "well known" resolvers was that they were deliberately encouraging their use by non-customers, data-mining the lookups for marketing purposes, and selling the statistical results. -- Jay Hennigan - CCIE #7880 - Network Engineering - jay@impulse.net Impulse Internet Service - http://www.impulse.net/ Your local telephone and internet company - 805 884-6323 - WB6RDV
It`s really interesting, was there many years ago a message: "Oh, they shut down an Internet legend, the last well-known open SMTP relay! It was so comfortable to use it..." ;-) randal k wrote:
Anybody know what is up/down with the GTE/Level3 name-servers used the world over on 4.2.2.1 <http://4.2.2.1>, 4.2.2.2 <http://4.2.2.2>? Suddenly started getting no responses from them for a couple of our side apps.
I hope these servers stick around forever, they're kind of an Internet legend.
Cheers, Randal
-- WBR, Max Tulyev (MT6561-RIPE, 2:463/253@FIDO)
participants (8)
-
Christopher Morrow
-
Jay Hennigan
-
Joe Provo
-
Max Tulyev
-
Paul Stewart
-
Paul Vixie
-
randal k
-
Tony Finch