Re: DNSSEC Readiness

About Merit

Services

Network

Resources & Support

Network Research

News

Events

Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Re: DNSSEC Readiness

From: Amar
Date: Mon Feb 15 15:01:46 2010

List-archive: <http://mailman.nanog.org/mailman/nanog>
List-help: <mailto:nanog-request@nanog.org?subject=help>
List-id: North American Network Operators Group <nanog.nanog.org>
List-post: <mailto:nanog@nanog.org>
List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>,<mailto:nanog-request@nanog.org?subject=subscribe>
List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>,<mailto:nanog-request@nanog.org?subject=unsubscribe>

Charles N Wyble wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

All,

How are folks verifying DNSSEC readiness of their environments? Any
existing testing methodologies / resources that folks are using?

It seems like this is something that will become a front and center
issue for help desks everywhere pretty quick. :) Ideally the more we can
stave off issues through proactive testing/fixing the better.


FWIW - .se did some consumer research during their
DNSSec launch. I belive there will be a new study.

Tests of Consumer Broadband Routers in Sweden (DNSSEC)
in 2008:
http://www.iis.se/docs/Routertester_en.pdf

-- amar

Follow-Ups:
- Re: DNSSEC Readiness Florian Weimer

References:
- DNSSEC Readiness Charles N Wyble