[LINK] RFI: Telstra DNS outage
Hamish Moffatt
hamish at cloud.net.au
Fri May 13 09:38:22 AEST 2016
On 13/05/16 09:02, Roger Clarke wrote:
> itNews reports:
>> Telstra suffered a nationwide network outage last night, as two of its internet domain name servers ceased to respond to queries from thousands of customer systems.
> Am I missing something here?
>
> I've chastised small-time ISPs in the past for having both or all of their DNS-servers on the same sub-net and therefore (under IPv4 at least) subject to the same threats. They thereby represent a single-point-of-failure, rather than the redundancy that is the whole point of having >1 DNS-server.
>
> But Telstra currently shows this:
>
> telstra.net. NS dns1.telstra.net.
> telstra.net. NS sec1.apnic.net.
> telstra.net. NS sec3.apnic.net.
> telstra.net. NS dns0.telstra.net.
>
> dns1.telstra.net. A 203.50.5.200
> dns0.telstra.net. A 203.50.5.199
>
> Is the largest provider in the country utterly incompetent?
>
> Or is there something important about Internet architecture that I fail to understand?
>
Besides dns0/1.telstra.net there's two other servers there you've
overlooked.
In addition to what the others have said, those are the IPs for
telstra.net's name servers (used for everybody worldwide to find
Telstra), not the name servers used by Telstra customers to find things
on the Internet. On my cable connection in Melbourne the provided name
servers are 61.9.133.193 and 61.9.134.49
(dns-cust.lon.bigpond.net.au/dns-cust.win.bigpond.net.au).
Hamish
More information about the Link
mailing list