Re: [Add] [EXTERNAL] Re: TTL of resolver.arpa
Ben Schwartz <bemasc@google.com> Wed, 05 January 2022 16:53 UTC
Return-Path: <bemasc@google.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 21B933A1165 for <add@ietfa.amsl.com>; Wed, 5 Jan 2022 08:53:07 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.599
X-Spam-Level:
X-Spam-Status: No, score=-17.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AFyfZoXzp3HJ for <add@ietfa.amsl.com>; Wed, 5 Jan 2022 08:53:02 -0800 (PST)
Received: from mail-ua1-x92c.google.com (mail-ua1-x92c.google.com [IPv6:2607:f8b0:4864:20::92c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 738E23A1166 for <add@ietf.org>; Wed, 5 Jan 2022 08:53:02 -0800 (PST)
Received: by mail-ua1-x92c.google.com with SMTP id i5so55071074uaq.10 for <add@ietf.org>; Wed, 05 Jan 2022 08:53:02 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=6FU8TwtI/957A3yj1jQ/V6ZXXKa79NNKQfN2MboBfMM=; b=MEVHQJGZNpo5WSuUeIDZ6iZULpf/FjAlpvmML+4vWGnYaKKWxtuHeid0NuHj/UNGcW Tct/PEYn+4EHa00IsCSw7Vh2wrLm/RzsZnavf5YsNYZ5K9EmMib2Lzvl9Z4JrQplGtQ6 UydP/GkGjjwQR/nBAc8sBw6wENpZaWMZKlX5kxf9M+CTRFUN1HF60tiIMdOzW8bN/wup lKGKVamK6IjPhrSH9Zg/ywJ5iBlHhKv3Ai0dIkWdT3xtAe8sWB8IvNuEcWQ4Dnvr9qXb TUEfgxsVJHfrNb+ZUBKosoyEzaskP34osrZOi1u9YgnJSiXC9HX+yw/luUGG22xa4wYy SH5Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=6FU8TwtI/957A3yj1jQ/V6ZXXKa79NNKQfN2MboBfMM=; b=DvajWkbQm4k5z7jY83ww5jxJZywS39lBRAxMzbT1jkPIUMKWBvBn1zsuz2SxhPMBux XBCZTgaosNyEUdODngGxFSQG3hmW03+BUFuQsA9iAHUqvHBRpMT3z7P/plqvZhbw+dAr TGAs4TPbOxLjHmFhtURa78stHwxzmIkdAGfLrzoQqOLRKohN3L5ls9jYjed6qgjl4p+/ DwF5Zg/E1OcJHBMOXcJ8YJPUZMZ/ctjtVKVPgCQu2gXDL0bfxqL1PYVSviJiXgd4NZ+A 5ovEi91zGSaRbWu3JAcllOzR/JMXvCL4TJuBEXnR4HI7THVlR7qBfLI8nzqHiW8K9Bk4 H2og==
X-Gm-Message-State: AOAM5302sMsMm+jULibKF5rLWo1sMEdnPbXayoq3BoNBrzUMJ7rZ+O4D 0dOmALT9uH7rrLR5Up4fJqmG0iDqT7SICx02XPBCMFWaLtw=
X-Google-Smtp-Source: ABdhPJxAq3G8s/0tPNVEBKNvuqcBBRTCaa7tJyUJzVoN31SVzYBpwVLZIYvUi091XS0URZFbLrKKMvWW5YewjtAdiR4=
X-Received: by 2002:a05:6102:e89:: with SMTP id l9mr18191769vst.80.1641401580319; Wed, 05 Jan 2022 08:53:00 -0800 (PST)
MIME-Version: 1.0
References: <SJ0PR00MB1318A7693D1BCE72AB05D4EAFA499@SJ0PR00MB1318.namprd00.prod.outlook.com> <9363D704-18FF-46CE-9B7A-38874C49D724@nohats.ca> <CADZyTkkC2wY+38NjJ0OM-uCzeY6k3+2x9C3uiGphP0=opnVuFg@mail.gmail.com>
In-Reply-To: <CADZyTkkC2wY+38NjJ0OM-uCzeY6k3+2x9C3uiGphP0=opnVuFg@mail.gmail.com>
From: Ben Schwartz <bemasc@google.com>
Date: Wed, 05 Jan 2022 11:52:49 -0500
Message-ID: <CAHbrMsDVRmZAZfe2y6uN5mkG0B9+j1f_95zYZwj9-OzVicg2+g@mail.gmail.com>
To: Daniel Migault <mglt.ietf@gmail.com>
Cc: Paul Wouters <paul@nohats.ca>, ADD Mailing list <add@ietf.org>, Tommy Jensen <Jensen.Thomas=40microsoft.com@dmarc.ietf.org>, Eric Orth <ericorth=40google.com@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="00000000000021571e05d4d8965d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/1FOO4L0Ti5wMOfJ93nWbIKQE-_s>
Subject: Re: [Add] [EXTERNAL] Re: TTL of resolver.arpa
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Jan 2022 16:53:07 -0000
On Wed, Jan 5, 2022 at 10:31 AM Daniel Migault <mglt.ietf@gmail.com> wrote: ... > The problem is that the response of the _dns.resolver.arpa is used to > indicate the available encrypted resolver but that information remains only > valid while the client remains attached to the same resolver. > I concur, but I don't see this as a problem. Typically, a mobile node re-using the response from one network - like a > wifi network - to another network - ran network - will not be able to > discover the resolvers in the new network as it will attempt to connect to > the resolvers of the old network. > Yes. This is an error on the client's part. The DDR response is only valid and applicable for the interface configuration on which it was discovered. If you think it's unclear, we can add text reminding clients of this restriction. Regarding the arguments for not having a 0 TTL, that have been mentioned so > far: > * clients could flush their cash when changing the network. I agree with > Paul W. this does not seem to be the case with many applications and cannot > be a reliable hypothesis. > Clients either have to (a) restrict DDR records to the network on which they were resolved, or (b) implement a fast fallback mechanism if the resolver unexpectedly becomes unavailable and tolerate a brief outage during reinitialization. * polling issue does not seem to me an issue either. The resolver.arpa > query is only expected to be performed when the discovery occurs and I do > not see the need to perform a discovery every TTL. > I do see this need. Networks are permitted to change their configuration. Long-lived clients need to know how to stay up to date, ideally updating before the old configuration becomes invalid.
- [Add] TTL of resolver.arpa Daniel Migault
- Re: [Add] TTL of resolver.arpa Eric Orth
- Re: [Add] TTL of resolver.arpa Paul Wouters
- Re: [Add] [EXTERNAL] Re: TTL of resolver.arpa Tommy Jensen
- Re: [Add] [EXTERNAL] Re: TTL of resolver.arpa Paul Wouters
- Re: [Add] [EXTERNAL] Re: TTL of resolver.arpa Daniel Migault
- Re: [Add] [EXTERNAL] Re: TTL of resolver.arpa Ben Schwartz
- Re: [Add] [EXTERNAL] Re: TTL of resolver.arpa Tommy Jensen
- Re: [Add] [EXTERNAL] Re: TTL of resolver.arpa Daniel Migault
- Re: [Add] [EXTERNAL] Re: TTL of resolver.arpa Steffen Nurpmeso