DNS was [Gllug] IPSec

Tom Gilbert tom at linuxbrit.co.uk
Wed Feb 13 18:16:44 UTC 2002


* William Palfreman (william at palfreman.com) wrote:
> On Tue, 12 Feb 2002, Tom Gilbert wrote:
> 
> > * Richard Cottrill (richard_c at tpg.com.au) wrote:
> > > I'm curious; what's a 'large' DNS query? Is that where you store a HUGE
> > > FQDN, or when you store other stuff in a DNS (like keys for IPSec)? Is it
> > > only appropriate for lookups or for reverse lookups as well?
> > >
> > > Apart from name/IP data and IPSec stuff (which initially surprised me) what
> > > else do people put in DNS? What are the limitations?
> >
> > The maximum DNS response packet size is 512 bytes afair.
> 
> For udp.  A tcp zone transfer could be much bigger, and I think
> that is what meant here.  A huge query would by say when a sites main
> slave host restarts and loads up the lot.

Read my mail again, especially the bottom 2 paragraphs. UDP is used for
a response, tcp is used if the UDP response has the truncated flag set.

Tom.
-- 
   .^.    .-------------------------------------------------------.
   /V\    | Tom Gilbert, London, England | http://linuxbrit.co.uk |
 /(   )\  | Open Source/UNIX consultant  | tom at linuxbrit.co.uk    |
  ^^-^^   `-------------------------------------------------------'

-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug




More information about the GLLUG mailing list