Speaker
Description
RFC 8767 "Serving Stale Data to Improve DNS Resiliency" defines a method (serve-stale) for recursive resolvers to use stale DNS data to avoid outages when authoritative nameservers cannot be reached to refresh expired data.
Should you enable this feature on your resolvers? If you do enable it, what are the advantages and disadvantages? Which serve-stale options are available on the most popular open-source resolver implementations to manage and serve stale DNS data? How do the serve-stale configuration options affect the behaviour and operation of your DNS resolver?
This talk will introduce the basics of serve-stale, and then explore how you might choose to customise the options to suit your own resolver requirements and/or constraints.
Summary
This talk contains practical guidance for DNS resolver operators on retaining and serving expired DNS content when remote authoritative DNS services are temporarily unavailable.
| Talk duration | 20 Minutes (+5 for Q&A) |
|---|
