[Pdns-users] PowerDNS in an ISP environment

Thu Aug 18 00:02:28 UTC 2011

We at Sonic.net have been running PowerDNS authoritative server and
recursor since 2007 over some 12k+ domains.

Bert and the PowerDNS community have always been very responsive to
questions and assistance.

Before we migrated we captured and replayed some traffic from our then
production BIND name servers to a test instance of PowerDNS, this gave
us the data and confidence to move forward.

PowerDNS used to come with some tools ( namely dnsreplay ), I'm not
sure how available those tools are anymore:

http://doc.powerdns.com/analysis.html

And apparently I wrote something too:

http://www.schwer.us/journal/2006/11/09/replay-dns-traffic-dnsreplaypl/

Of course that just tells you if the name server answered at all, you
would really want to know that it replied with the answer you were
expecting.

I hope that helps.

--Augie

On Tue, Aug 16, 2011 at 12:38 AM, Chris Russell
<Chris.Russell at knowledgeit.co.uk> wrote:
> Hi All,
>
>
>
> Quick question – is anyone on the list using PDNS in an ISP environment,
> especially for auth services ?
>
>
>
> Have prepped PDNS to replace our Bind instances however management have
> raised concerns over moving away from the “industry standard”, so have asked
> for more justification on the change in software.  Already have some ideas
> but some “real world” use cases would really be the clincher.
>
>
>
> Have spotted a new names on a couple of things published by Bert, and those
> of PlusNET but fpdns (yes, a little out of date signatures I acknowledge)
> seem to suggest no match (could be pdns 3)  but mostly Bind. ie:
>
>
>
> [root at ns1 ~]# fpdns -D plus.net
>
> fingerprint (plus.net, 195.166.128.16): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
> fingerprint (plus.net, 195.166.128.17): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
>
>
> [root at ns1 ~]# fpdns -D register.com
>
> fingerprint (register.com, 216.21.227.12): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
> fingerprint (register.com, 216.21.227.11): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
> fingerprint (register.com, 216.21.230.12): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
>
>
> [root at ns1 ~]# fpdns -D .tk
>
> fingerprint (.tk, 202.125.44.173): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
> fingerprint (.tk, 207.36.228.217): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
> fingerprint (.tk, 217.199.176.121): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
>
>
> [root at ns1 ~]# fpdns -D .mn
>
> fingerprint (.mn, 199.254.62.1): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
> fingerprint (.mn, 199.249.116.1): No match found
>
> fingerprint (.mn, 202.72.241.5): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
> fingerprint (.mn, 202.131.0.10): ISC BIND 9.2.3rc1 -- 9.4.0a4
>
>
>
> Have also done a few scans on some of the top hosts in the UK ISPA, some
> PDNS but mostly myDNS and/or bind.
>
>
>
> This isn’t to get into one server is better than another or individual
> choices, I like PDNS,  more just looking for some use cases so I can get
> this over the line J
>
>
>
> Cheers
>
>
>
> Chris
>
>
>
> ________________________________
> Knowledge I.T.
> ‘Unifying Business Technology’
> www.knowledgeit.co.uk
>
> ________________________________
> Knowledge Limited, Company Registration: 1554385
> Registered Office: New Century House, Crowther Road, Washington, Tyne &
> Wear. NE38 0AQ
> Leeds Office: Viscount Court, Leeds Road, Rothwell, Leeds. LS26 0GR
>
> Tel: 0845 142 0020. Fax: 0845 142 0021
>
> E-Mail Disclaimer: This e-mail message is intended to be received only by
> persons entitled to receive the confidential information it may contain.
> E-mail messages to clients of Knowledge IT may contain information that is
> confidential and legally privileged. Please do not read, copy, forward, or
> store this message unless you are an intended recipient of it. If you have
> received this message in error, please forward it to the sender and delete
> it completely from your computer system.
>
> Please consider the environment before printing this email.
>
> _______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> http://mailman.powerdns.com/mailman/listinfo/pdns-users
>
>

-- 
Augie Schwer    -    Augie at Schwer.us    -    http://schwer.us