IETF Logo Mail Archive

Re: [Add] [Ext] Draft Posting: CNAME Discovery of Local DoH Resolvers

Ted Lemon <mellon@fugue.com> Wed, 01 July 2020 16:51 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5A95D3A1160 for <add@ietfa.amsl.com>; Wed, 1 Jul 2020 09:51:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kJjRjlqRgrue for <add@ietfa.amsl.com>; Wed, 1 Jul 2020 09:51:06 -0700 (PDT)
Received: from mail-qt1-x82f.google.com (mail-qt1-x82f.google.com [IPv6:2607:f8b0:4864:20::82f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 470703A1310 for <add@ietf.org>; Wed, 1 Jul 2020 09:51:06 -0700 (PDT)
Received: by mail-qt1-x82f.google.com with SMTP id h23so19009695qtr.0 for <add@ietf.org>; Wed, 01 Jul 2020 09:51:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=EzZKy8Q1+35qRrsmJt9QmUS0XFbGRwnYBnFGijWzhnw=; b=gVtNSdHBiXj5QMcr6gOiNTv9uHrjbFVnBJaT5gPmFjpZQKEMjTWDxxIBHTG52zsnxf A5Dxv6oKaqVgHpvntHruJOT78MLCrAKFwVx9TweoujbR4/fOwDuk1IG7p3uncG82ONuP XzvCnYKUY+dPEv0UJXwJF+MuqhoL8DSLx283RZstPQs5HtPunEFLNzPmFG7QOLDfEGel T5WpdhHSoNnwAHStkfW6UFPO3VUTDrCqHUiX8KNJFMp7DM8R1VM9BSJQDMXij86VvTMm AoENswhpreQdgBAM3H5Diiu/s9Oe8JR4zxBt/20MBmI/nVkb6llqLCtloHAAPdv6gPdP NBEQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=EzZKy8Q1+35qRrsmJt9QmUS0XFbGRwnYBnFGijWzhnw=; b=iO7DWPY09bNT+viS/3i7utCOkQjg1a88XjftyERprIYSH66EAWUFhwTG0LouSpg/bs LSiVCvrRncNZaQfVhx4ll7fe/YyBzAKam140bmXDmJb5/QSwACm5qVsMRCMFgN1P9BnA Gng+YKmXplCFxlI+Z0+aLuFtG9y9R3EQPdsT5lFnCFW9i26Q2a5Mf5ayeqT070AH2zZX svcQPI6c5ra0Dq8aPLg0DGhkzUsaduEkvnndg6kEEpsplrUXUR7H8zHb9pcnJKDCMdYH 6e6m7MjSo886empGsV6YGJFz9qGvJ82GMqP4kwKzeonpiXkv/DI7R7nPSvC+7YmPDRBx CHkA==
X-Gm-Message-State: AOAM530vqE2VMR1kPPKSQOR11dEy6Wds2evt9eThhzcgmSFrPrLqkRky Zh/JwTrv7orjNj5R4W07ncNB5Q==
X-Google-Smtp-Source: ABdhPJzIEbQjctgLuPIDZ+FatXVETXR+npMQFaoMKTmxYcr+bFursiErvY81xC+k9a0TidIABaZgrA==
X-Received: by 2002:ac8:fec:: with SMTP id f41mr25213427qtk.212.1593622265234; Wed, 01 Jul 2020 09:51:05 -0700 (PDT)
Received: from ?IPv6:2601:18b:300:36ee:7591:cd25:b0c:85a5? ([2601:18b:300:36ee:7591:cd25:b0c:85a5]) by smtp.gmail.com with ESMTPSA id q5sm7010294qtf.12.2020.07.01.09.51.03 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Wed, 01 Jul 2020 09:51:04 -0700 (PDT)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <83AD693E-504B-42F2-A217-836AF2283AEF@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_9A1358F1-AFE3-4523-B0CB-5F5ED2CEF9E1"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\))
Date: Wed, 01 Jul 2020 12:51:03 -0400
In-Reply-To: <CABcZeBNfmPsvnzALz3DR7p0HgEQhJTtiekB--bCsO-QiPyec=w@mail.gmail.com>
Cc: Michael Richardson <mcr+ietf@sandelman.ca>, tirumal reddy <kondtir@gmail.com>, ADD Mailing list <add@ietf.org>, Paul Vixie <paul@redbarn.org>
To: Eric Rescorla <ekr@rtfm.com>
References: <CAFpG3gdiidmjxoauBw56ZybRabB6JET1Nh5dzTLQq1k0ZAn6Uw@mail.gmail.com> <AC1FE98D-8F0E-44E9-98EF-8DD5FF7520D5@fugue.com> <2033.1593617945@localhost> <CABcZeBNfmPsvnzALz3DR7p0HgEQhJTtiekB--bCsO-QiPyec=w@mail.gmail.com>
X-Mailer: Apple Mail (2.3608.120.23.2.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/qbB6QUqYvsJ6pnEA2N6GlGMHG5k>
Subject: Re: [Add] [Ext] Draft Posting: CNAME Discovery of Local DoH Resolvers
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Jul 2020 16:51:09 -0000

On Jul 1, 2020, at 12:45 PM, Eric Rescorla <ekr@rtfm.com> wrote:
> It's *also* inconvenient to do DHCP, but the real concern there is whether the local middleboxes etc. will propagate whatever DHCP information is needed. Consider the case where we have a DHCP option that says 'here is a DoH server' and the router provided CPE provides that. But if I have a third party WiFi router, it consumes that option. Does it then propagate that to the clients? If not, then the DHCP thing is not going to work super well.

Here again DNS Service Discovery would address this problem—the browsing domain discovery process could readily discover a static DNSSD configuration at the ISP.  There are even APIs for this on e.g. Windows, Android, Linux and Mac, so you don’t have to use the limited getaddrinfo API.

v2.23.0 | Report a Bug | By Email