I’d never heard of anycast until I read Mark Jeftovic’s post today. Seems that my DNS host uses anycast to improve their resiliency to DDoS attacks.

Essentially you have multiple hosts on the public internet with identical routable IP-addresses, and use traditional routing protocols to guide traffic to the closest one. This is really only suitable for connectionless protocols, like DNS. Neat stuff.

More details can of course be found at the usual repository of all human knowledge.


%d bloggers like this: