urn:uuid:71de4eb8-53b2-57ee-b483-76cec6950f5b Topic: DNS – Ctrl blog Daniel Aleksandersen https://www.daniel.priv.no/ Copyright © 2021 Daniel Aleksandersen. https://www.ctrl.blog/assets/favicon/favicon.svg 2021-08-16T16:41:00Z weekly 10 urn:uuid:5eb03989-64e5-4960-b471-633415385cc0 2021-08-15T11:19:00Z 2021-08-16T16:41:00Z What domain name to use for your home network Always use the ‘.home.arpa’ top-level domain (RFC 8375), and don’t use the special-purpose ‘.local,’ or made-up undelegated domain names like ‘.lan’ or ‘.home.’ <p>There’s a definitive answer to this question, and you can find it in RFC 8375: use <code>home.arpa.</code> Never heard of it before? It wasn’t assigned as a special purpose top-level domain (spTLD) name for residential and small networks until 2018.</p> <p><a href="https://www.ctrl.blog/entry/homenet-domain-name.html">Read more …</a></p> urn:uuid:a0ca138d-1f14-4938-81af-dbae88d95471 2020-01-09T12:17:00Z 2020-01-09T12:17:00Z .blog vs .com TLD performance Traditional and established top-level domain resolves faster than the newfangled .blog top-level domain. Unsurprising, but worrisome. <p>BunnyCDN shared some interesting performance benchmarks of the name servers responsible for some generic top-level domains (gTLD). They measured from 50 locations around the world.</p> <p><a href="https://www.ctrl.blog/entry/dotblog-tld-performance.html">Read more …</a></p> urn:uuid:fff4c0f2-4043-4acb-89c9-aac5de1151a0 2019-11-19T17:25:00Z 2020-10-15T23:07:00Z What to <link rel=dns-prefetch> and when to use preconnect What to <code translate="no">&lt;link rel=dns-prefetch&gt;</code> and when to use <code translate="no">preconnect</code> Learn the difference between dns-prefecth vs preconnect, how to work around browser bugs, and when to use which? iOS and Safari requires special attention. <p>The <code>dns-prefetch</code> resource hint is intended to look-up domain names before the browser would otherwise know that they’d be needed in the near future. It’s a quick way to speed up the loading of external page resources.</p> <p><a href="https://www.ctrl.blog/entry/dns-prefetch-preconnect.html">Read more …</a></p> urn:uuid:36adf2ba-8873-4aa3-a854-cc4791ce291b 2019-06-08T23:09:00Z 2019-08-05T19:21:00Z How to disable outgoing mDNS broadcasts on Linux Tutorial for quieting Multicast DNS using various firewall front-ends for Linux’s iptables firewall such as FirewallD and Ubuntu’s UFW. <p>Multicast DNS (mDNS) is a convenient method for auto-discovering other computers and services (DNS-SD) on the local network. However, in some situations you don’t want to announce your services or even broadcast your presence on a particular network. Here is how to block outgoing mDNS broadcasts on Linux.</p> <p><a href="https://www.ctrl.blog/entry/how-to-disable-mdns-linux.html">Read more …</a></p> urn:uuid:d9ecf83b-9dfa-4f22-8b43-1db6cee44883 2019-02-26T18:08:00Z 2019-02-26T18:08:00Z Hurricane Electric secondary DNS adds support for TSIG authentication I asked HE DNS if they had plans to support TSIG authenticated AXFR requests. Weeks later they rolled out support for the feature. <p>I published a disappointing comparison of secondary authoritative DNS service providers last month. There wasn’t any clear winners as even the most expensive services lacked proper domain zone transfer (AXFR) authentication (TSIG.) However, one of the providers have stepped up their game and have added TSIG support.</p> <p><a href="https://www.ctrl.blog/entry/he-2nd-dns-tsig.html">Read more …</a></p>