[Add] Testing DDR with macOS
Tommy Pauly <tpauly@apple.com> Wed, 23 February 2022 17:52 UTC
Return-Path: <tpauly@apple.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DA1A43A1192 for <add@ietfa.amsl.com>; Wed, 23 Feb 2022 09:52:04 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.672
X-Spam-Level:
X-Spam-Status: No, score=-2.672 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.576, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1K8tVqTCwM0f for <add@ietfa.amsl.com>; Wed, 23 Feb 2022 09:52:03 -0800 (PST)
Received: from ma1-aaemail-dr-lapp02.apple.com (ma1-aaemail-dr-lapp02.apple.com [17.171.2.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1E9E03A118E for <add@ietf.org>; Wed, 23 Feb 2022 09:52:02 -0800 (PST)
Received: from pps.filterd (ma1-aaemail-dr-lapp02.apple.com [127.0.0.1]) by ma1-aaemail-dr-lapp02.apple.com (8.16.0.42/8.16.0.42) with SMTP id 21NHigMP029116 for <add@ietf.org>; Wed, 23 Feb 2022 09:52:02 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=from : content-type : mime-version : subject : message-id : date : to; s=20180706; bh=/8PXQTUYUwjm8Y2VKIyiPZYtw0nu9/29CdS+x0boobY=; b=EgBfMAc0rsoVRmWpVqZOC/yAaYtRf/JSHpRSGf8Ovjr6cGgb88qp/C33PtRYNLk59GQR 6aFMvjsW9gy/Dghf6qFljPDPUAZAEOIqaw6RWGWeD8EFv8BdPjrIwBb3P7xjB5L0zVZ5 lELd3VZ62H5CmER6tzAH0ZwfLWO5Rya4pnbs1KS+NUfG1tCmv9eU6EEKTwhA54nW7nPa on7455U+RpV/YnhLqyu4ynLhKL+zwHPdeWuofs9M21jbAryXLqFtChJVz/j+Z1L7xf/D eX1Azg88M83Wx1PsQAceuEl8PKiWMOZmL4/p2/uRuWI1TXVJobm38Mhqi+fBI87GP4Hd iw==
Received: from rn-mailsvcp-mta-lapp01.rno.apple.com (rn-mailsvcp-mta-lapp01.rno.apple.com [10.225.203.149]) by ma1-aaemail-dr-lapp02.apple.com with ESMTP id 3eax3xs0eh-2 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for <add@ietf.org>; Wed, 23 Feb 2022 09:52:02 -0800
Received: from rn-mailsvcp-mmp-lapp04.rno.apple.com (rn-mailsvcp-mmp-lapp04.rno.apple.com [17.179.253.17]) by rn-mailsvcp-mta-lapp01.rno.apple.com (Oracle Communications Messaging Server 8.1.0.12.20210903 64bit (built Sep 3 2021)) with ESMTPS id <0R7R00VONQYPJH60@rn-mailsvcp-mta-lapp01.rno.apple.com> for add@ietf.org; Wed, 23 Feb 2022 09:52:01 -0800 (PST)
Received: from process_milters-daemon.rn-mailsvcp-mmp-lapp04.rno.apple.com by rn-mailsvcp-mmp-lapp04.rno.apple.com (Oracle Communications Messaging Server 8.1.0.12.20210903 64bit (built Sep 3 2021)) id <0R7R00Q00QQDTZ00@rn-mailsvcp-mmp-lapp04.rno.apple.com> for add@ietf.org; Wed, 23 Feb 2022 09:52:01 -0800 (PST)
X-Va-A:
X-Va-T-CD: aa987671f9cf16b3e83d4d5ef62c6b43
X-Va-E-CD: 646f5f316c225709b50e99d9db1b58cb
X-Va-R-CD: 349ac7bb66a815984513d0cbe31bbd4d
X-Va-CD: 0
X-Va-ID: 8f125e04-47db-44e7-9989-e98cab9d9848
X-V-A:
X-V-T-CD: aa987671f9cf16b3e83d4d5ef62c6b43
X-V-E-CD: 646f5f316c225709b50e99d9db1b58cb
X-V-R-CD: 349ac7bb66a815984513d0cbe31bbd4d
X-V-CD: 0
X-V-ID: 7be8663c-1572-4785-a45c-e7c9667f167c
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.425, 18.0.816 definitions=2022-02-23_09:2022-02-23, 2022-02-23 signatures=0
Received: from smtpclient.apple (unknown [17.234.63.162]) by rn-mailsvcp-mmp-lapp04.rno.apple.com (Oracle Communications Messaging Server 8.1.0.12.20210903 64bit (built Sep 3 2021)) with ESMTPSA id <0R7R00T7EQYO8I00@rn-mailsvcp-mmp-lapp04.rno.apple.com> for add@ietf.org; Wed, 23 Feb 2022 09:52:01 -0800 (PST)
From: Tommy Pauly <tpauly@apple.com>
Content-type: multipart/alternative; boundary="Apple-Mail=_6A92E512-3AC3-4ADA-AA23-A47396B5118C"
MIME-version: 1.0 (Mac OS X Mail 16.0 \(3696.80.61.1.1\))
Message-id: <8606CBB5-BE41-4AE5-8F1D-F81C4D099AB2@apple.com>
Date: Wed, 23 Feb 2022 09:52:00 -0800
To: ADD Mailing list <add@ietf.org>
X-Mailer: Apple Mail (2.3696.80.61.1.1)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.425, 18.0.816 definitions=2022-02-23_09:2022-02-23, 2022-02-23 signatures=0
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/rMJOhpvh1zBpnjBMtT8tN4NQFtk>
Subject: [Add] Testing DDR with macOS
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Feb 2022 17:52:06 -0000
Hello ADD, I wanted to share with the group, for anyone who’s trying to bring up Discovery of Designated Resolvers (DDR, https://datatracker.ietf.org/doc/draft-ietf-add-ddr/ <https://datatracker.ietf.org/doc/draft-ietf-add-ddr/>) on their resolvers, that there is now a way to test this functionality with the current beta of macOS 12.3 <https://developer.apple.com/news/releases/?id=02152022e>. This is not enabled by default, but is a developer option. In Terminal, you can run the following commands: sudo defaults write /Library/Preferences/com.apple.networkd enable_ddr -int 1 sudo killall -9 mDNSResponder The client will then start issuing SVCB queries for _dns.resolver.arpa, and using the results to verify resolvers and upgrade to encrypted DNS, either DoT or DoH. Hopefully this can be a useful tool to you! Best, Tommy
- [Add] Testing DDR with macOS Tommy Pauly
- [Add] Testing DDR with macOS and iOS Tommy Pauly