W.C.A. Wijngaards wrote: > On 10/08/2009 01:45 PM, W.C.A. Wijngaards wrote: >>> Can I make it? >> >> No, that would be a lie. >> >> (but, there is an escape hatch, if you implement something weird >> in pythonmod you can set whatever flag you like on a response). > > Well, I agree with Ondrej, what you want is run NSD as a slave > to the existing bind server, with only NSD visible from the outside. > Instead of caching it performs zone transfers. But As far as I know NSD doesn't have a cache, so under heavy load NSD will load disk. I have plenty of zones, so I want to protect my authoritative servers from burst of requests, ddos and so on.