Guest Post From Glenn Kelley at Connectivity Engineer “Why ISPs Should Totally Rely on Google and CloudFlare for DNS (Wink, Wink)” Alright, folks, gather round as we explore the hilariously absurd notion that Internet Service Providers (ISPs) should shirk their responsibility and just use free DNS servers like Google’s or CloudFlare’s. This is the same as suggesting that a professional chef should ditch all the fancy kitchen gadgets and just use a microwave, because, well, it’s just cooking, right? 😉 1. Dependency is...
Continue reading...dns
If you are an ISP, run your own DNS resolvers
Glenn Kelley has a great article on spinning up your own DNS resolvers. This is a critical piece of infrastructure if you are in internet Service Provider (ISP). https://www.linkedin.com/pulse/making-dns-server-your-network-uses-root-hints-glenn-kelley As Glenn writes. Here’s why ISPs should consider running their own: This is especially important in high-latency networks such as in the 3rd world or some Fixed Wireless networks Conclusion While leveraging third-party DNS services like Google or Cloudflare offers a plug-and-play solution for ISPs, in the long run, it might be more beneficial...
Continue reading...How does the Domain Name System (DNS) works?
Over the years, I have written articles on Domain Name System (DNS) and how and why you should do certain things. I came across this DNS graphic this morning. Image Credit: @Rapid_API As you can see, a never-before-seen DNS request is sent to a resolver, then a root server, then a TLD server, then an authoritative server, and finally back to the client. All of this is done in milliseconds (ms). As old as DNS is, it still significantly impacts modern computer networks.
Continue reading...DNS Reaper tool
DNS Reaper is yet another sub-domain takeover tool, but with an emphasis on accuracy, speed and the number of signatures in our arsenal! We can scan around 50 subdomains per second, testing each one with over 50 takeover signatures. This means most organisations can scan their entire DNS estate in less than 10 seconds. https://github.com/punk-security/dnsReaper?utm_source=tldrnewsletter
Continue reading...DNS in ISP networks and why you should care
If you are not familiar with how DNS works, please go and read this article and watch the accompanying video. In this article we will talk about the different types of DNS servers an ISP will encounter and the design considerations of implementing them into your network. Let’s jump into the three types. Cache servers local DNS (LDNS) servers authoritative DNS (ADNS) servers, of which the Root and Top Level Domain (gTLD) servers are special cases Let’s go into detail on what each...
Continue reading...DNS shotgun for DNS testing
DNS Shotgun is capable of simulating real client behaviour by replaying captured traffic over selected protocol(s). The timing of original queries as well as their content is kept intact. https://dns-shotgun.readthedocs.io/en/stable/key-concepts/
Continue reading...The BrothersWisp Podcast
Finally had some time to contribute to another podcast I am a part of. http://thebrotherswisp.com/index.php/the-brothers-wisp-115-wisp-after-death-unifi-video-eol-rpki-basics/ This week we talk about:WISP Virtual Summit July 28thSave Dave’s brainRIP Ubiquiti Unifi Video – EOL 1/1/2021zwift.comCloudflare DNS outageDavid – Arduino, PHP programming, cycling and weight loss, new kid,Wilson’s RPKIMike got some new hardware; a stent!I’m done with my sales training – I’m a real boy
Continue reading...Simple Mikrotik DNS cache flush script
This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.To view this content, you must be a member of Justin’s Patreon Unlock with PatreonAlready a qualifying Patreon member? Refresh to access this content.
Continue reading...Mr DNS Podcast
If you are wanting learn all about DNS and learn lots of geeky DNS stuff you can listen http://www.ask-mrdns.com/
Continue reading...Using 8.8.8.8 or local resolvers for ISPs
ISPs should not be using external resolvers such as google’s 8.8.8.8 to do resolving for their customers
Continue reading...
