Hacker News new | ask | show | jobs
by paranoidrobot 2778 days ago
Except that the IP that your DNS provider resolves your apex to may be on the other side of the planet.

Fine if all you are doing is 302 to the www. Variant, but otherwise no.
2 comments
X-Istence 2778 days ago
This is where the Client Subnet edns extensions come in handy. This allows the DNS provider to pass along the /24 the users IP address is in.

With an extra caching key, this can even be cached.

See https://developers.google.com/speed/public-dns/docs/ecs

link
paranoidrobot 2777 days ago
And that also only helps if your DNS provider and the client's DNS servers also pass along that information correctly.
link
tony101 2777 days ago
> "the IP that your DNS provider resolves your apex to may be on the other side of the planet"

Anycast addresses this issue, right?[1] Cloudflare uses Anycast for their IP addresses.[2]

[1] https://en.wikipedia.org/wiki/Anycast

[2] https://www.cloudflare.com/learning/cdn/glossary/anycast-net...

link
paranoidrobot 2777 days ago
Only if your CDN uses Anycast. Not all of them do.
link