On 23 Feb 2005, at 15:22, Juha Saarinen wrote:
So they look for WORKGROUP in DNS? Not weird SRV records or something for Active Directories?
You need to stop being so literal, I think.
If you're suggesting that blocking 53/udp and 53/tcp would be an effective way to reduce query load on the roots, then yes, I'm sure that would be highly effective. (Simply turning them all off would probably be less effort, however.)
Less drastic: 'man pf.os'
It's not obvious how that would manage to distinguish (a) source platforms on single-packet UDP requests or (b) requests that are received at the roots from intermediate-mode resolvers (to give Bill's new phrase some currency) which would mask the platform of the request's originator. It's also not obvious that blocking requests based on source operating system is anything that a root server operator ought to be considering, although what people decide to do on their own authority servers is their own business. Joe