[colug-432] Cloud services and security

Travis Sidelinger travissidelinger at gmail.com
Mon Feb 7 17:56:53 EST 2011


And what happens then when your firewall needs to lookup your IP for
every packet.  That seems very inefficient and will really slow down
every packet.


On Mon, Feb 7, 2011 at 4:17 PM, Angelo McComis <angelo at mccomis.com> wrote:
> On Mon, Feb 7, 2011 at 3:43 PM, Travis Sidelinger
> <travissidelinger at gmail.com> wrote:
>>
>> Also, with a short DNS, I think the lowest you can go is 1 minute.  So
>> even with we had a firewall that could dynamically update, there will
>> still be a 1 minute outage every time the IP flips.
>>
>>
>
> That's not entirely true. In some cases, you can set the TTL to -1, so that
> it is never cached, and is resolved each time.  DNS administrators will hate
> you for life, make fun of you in public, and perhaps vandalize your cube if
> you do this though because their infrastructure is getting hit for EVERY
> request, rather than once for each client every so often.
>
> Technically it is possible though.
>
>
> _______________________________________________
> colug-432 mailing list
> colug-432 at colug.net
> http://lists.colug.net/mailman/listinfo/colug-432
>
>



-- 
"A careful reading of history clearly demonstrates ...
that people don't read history carefully.”



More information about the colug-432 mailing list