THE GAME HAS CHANGED

Introducing Infoblox Universal DDI ManagementTM

Watch the launch to discover the new era of management for critical network services. Watch Now

NIOS DNS DHCP IPAM

Reply

DNSSEC Performance Impact on Infoblox hardware

[ Edited ]
dotax
Authority
Posts: 11

‎11-14-2023 12:43 AM - edited ‎11-14-2023 12:44 AM

600     0

Hi all, 

 

I was wondering if anyone could share their experience after configured Infoblox DNS with DNSSEC signing zones. Wonder are there any increase on infoblox hardware performance consumption or incoming DNS traffic? 

If yes, roughly how many percentage should we expected? 

Labels:
Reply
0 Kudos

Re: DNSSEC Performance Impact on Infoblox hardware
Layer8
Techie
Posts: 37

‎02-14-2024 10:50 AM

600     0

Highly dependent on the key sizes of certs, how much of load of DNS is DNSSEC, etc

 

In general, when we are sizing this, we can anticipate up to 10-20x impact. The GM is the device that must respond to the signing requests, so historically depending on how much capacity the GM is at, we upsize it one or two appliance models to account for it. 

 

This is best done through the account team / your SA as it will go to a review board and be verified compared against past successful deployments, but indeed it can be a large impact depending on how many zones, what share of requests hit those zones, and what type of performance is required to sign those requests. 

nic(at)infoblox.com
Reply
0 Kudos
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Recommended for You

Latest Annoucements