5

Having read all of the questions and answers (1 2 3 and so on) on here relating to DNS load balancing, and Round-robin DNS, there's still a number of unanswered questions..

Large companies, and I'm looking at Google, Facebook and Twitter here, do present multiple A records.
1) If DNS loadbalancing/failover is so dodgy, why do large organisations do it?

There seems to be very little mention of "DNS Pinning", despite this (PDF) paper about it.
2) Why is DNS Pinning so seldom mentioned?

3) Are there any concrete examples of which ISPs and so on actually do rewrite DNS TTLs?

That said, I'm not entirely backing the side for using DNS for failover or any form of load balancing. For most networks, BGP diverse routing still seems to be a better fit.

DNS rears it's ugly head again. :(

Tom O'Connor
  • 27,440
  • 10
  • 72
  • 148
  • 4
    Just because you see multiple "A" records returned doesn't mean that DNS round-robin is all that those "large organisations" are doing. You may be getting back multiple "A" records that each refer to a virtual IP address being handled by VRRP, etc. Round-robin DNS works acceptably for distributing load but isn't a redundancy mechanism. – Evan Anderson Jan 11 '10 at 16:00
  • Fair enough. I asked this question because my boss wanted to know the answers too. I've attempted to explain that I suspected that google do some heavyweight BGP-like stuff below the DNS level.. (maybe now it'll be clearer.) – Tom O'Connor Jan 11 '10 at 16:13

1 Answers1

2
  1. because it's cheaper and easier than anycasting (BGP) and because it can be implemented entirely on your own hardware
  2. from a load-balancing standpoint, there's very little you can do about the browser caching DNS results in contradiction to your TTL settings.
  3. I'm not sure why ISPs would rewrite TTLs, Most requests will be from browsers, so I'm not sure it would be cost effective for them to invest in the infrastructure to do so.

I use DNS (GSLB actually) over anycasting for a couple of reasons. We've discussed BGP several times over the years, and I choose DNS over BGP because it's easier to do and, in most cases, just as or more reliable. Multiple facilities, clustered DNS servers, combined with proactively monitored GSLB and a TLD hosting service covers most potential faults.

Greeblesnort
  • 1,739
  • 8
  • 10