And it's probably worth noting that a major design goal of dnsmasq is
to remain simple. It targets (and nicely fills) most common needs,
and unlike many network services, you don't have to devote a lot of
time to learn how to run and manage it.

I'm sure if Simon can figure out a simple way to do failover, he
will, but I don't expect it. :)

Right now the best option for failover seems to be ISC DHCP 4.3, or
possibly Kea for the adventurous (a failover protocol does not seem
to be implemented yet, but lease database sharing is possible with
another possible point of failure: mysql or PostgreSQL.)

No it wasn't. Read the message you linked. It's said the server
crashed; software or hardware failure is not specified. This is a moot
point; I'm not really sure why you're offended at the idea that someone
may want redundant services.

To the original point: it's eminently possible to run dnsmasq on a
server, have it installed on a second server, and install drbd on both
machines. You can use heartbeat or other HA tools to fire up dnsmasq on
the secondary server if the primary fails. This can be set up in a way
similar to https://help.ubuntu.com/community/HighlyAvailableNFS but with
dnsmasq as the service specified instead of nfs-kernel-server.

There are different approaches to this idea, obviously; I've had good
luck using CARP on OpenBSD to multiplex back to two dnsmasq instances
who both mounted a shared filesystem via iSCSI. Again, the trick is to
be running software like heartbeat that is capable of detecting failure
of the primary node and firing up the secondary failover service.


khm

Yes, but...........

I have a router running OpenWrt but I still prefer to run dnsmasq on a
Raspberry Pi. All those routers/NAS etc. may run dnsmasq but it isn't
therefore particularly easy to configure as one wants.