On Tue, 5 Jun 2001, Jay D. Dyson wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
>
> On 5 Jun 2001, Jens Hektor wrote:
>
> > can you resolve www.cert.org at the moment (Tue, 10pm, GMT+2) ?
>
> Looks like either CERT is getting DDoS'd again or both their
> nameservers took a dump.
>
> It's not in my nature to kick a man when he's down, but what the
> hell is CERT thinking by putting their primary and secondary nameservers
> on the same Class C?
>
> CERT.ORG 192.88.209.5
> TICTAC.CERT.ORG 192.88.209.21
>
> Talk about a single point of failure. Yeesh.
If you use multiple routers with multiple ISP's over multiple physical
links you shouldn't need to have a problem. (Like a real AS.)
It would be nice to have two trusted off-site secundary servers just in
case. But as CERT is part of a single entity people may find it difficult
to arrange this.
Hugo.
--
All email send to me is bound to the rules described on my homepage.
hvdkooijat_private http://hvdkooij.xs4all.nl/
Don't meddle in the affairs of sysadmins,
for they are subtle and quick to anger.
This archive was generated by hypermail 2b30 : Tue Jun 05 2001 - 19:23:13 PDT