Re: [core] Dnsdir early review of draft-ietf-core-dns-over-coap-01
Martine Sophie Lenders <m.lenders@fu-berlin.de> Tue, 17 January 2023 15:23 UTC
Return-Path: <mlenders@zedat.fu-berlin.de>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AC402C151554; Tue, 17 Jan 2023 07:23:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.895
X-Spam-Level:
X-Spam-Status: No, score=-6.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7AbLREoVmQnb; Tue, 17 Jan 2023 07:23:36 -0800 (PST)
Received: from outpost1.zedat.fu-berlin.de (outpost1.zedat.fu-berlin.de [130.133.4.66]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C4118C14F721; Tue, 17 Jan 2023 07:23:32 -0800 (PST)
Received: from inpost2.zedat.fu-berlin.de ([130.133.4.69]) by outpost.zedat.fu-berlin.de (Exim 4.95) with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384 (envelope-from <mlenders@zedat.fu-berlin.de>) id 1pHno9-001A7O-IR; Tue, 17 Jan 2023 16:23:29 +0100
Received: from inetm02.imp.fu-berlin.de ([160.45.114.25]) by inpost2.zedat.fu-berlin.de (Exim 4.95) with esmtpsa (TLS1.3) tls TLS_AES_128_GCM_SHA256 (envelope-from <m.lenders@fu-berlin.de>) id 1pHno9-002ZBz-DB; Tue, 17 Jan 2023 16:23:29 +0100
Message-ID: <b6a10999-4129-f662-1bb5-3b822b42b36d@fu-berlin.de>
Date: Tue, 17 Jan 2023 16:23:29 +0100
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.6.1
Content-Language: en-US
To: Tim Wicinski <tjw.ietf@gmail.com>, dnsdir@ietf.org
Cc: core@ietf.org, draft-ietf-core-dns-over-coap.all@ietf.org
References: <167172912731.30303.7478512800074751429@ietfa.amsl.com>
From: Martine Sophie Lenders <m.lenders@fu-berlin.de>
In-Reply-To: <167172912731.30303.7478512800074751429@ietfa.amsl.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Original-Sender: m.lenders@fu-berlin.de
X-Originating-IP: 160.45.114.25
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/ioVax7s39UKD83OidxeX5FS5mDE>
Subject: Re: [core] Dnsdir early review of draft-ietf-core-dns-over-coap-01
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Jan 2023 15:23:40 -0000
Hi Tim,
many thanks your review, we highly appreciate it! And sorry for the late
reply. The transition to the new year was very packed.
On 22.12.22 18:12, Tim Wicinski via Datatracker wrote:
> Reviewer: Tim Wicinski
> Review result: On the Right Track
>
>
>
> I'm doing an early review of draft-ietf-core-dns-over-coap
> for the DNS Directorate. This is only an early review.
>
> Status: On the right track, but should have another review or reviews
> as it reaches WGLC status.
>
> While this draft is focused on the communication between a DNS-over-CoAP client
> and DNS-over-CoAP server, the communication between the DNS-over-CoAP Server
> and the "DNS Server" is done using DNS-over-DTLS, which the DNS community has
> not seen implementations in use. The whole communication between the
> the DoC Server and the "DNS Server" should be expanded upon.
In the draft, we tried to articulate that the DoC Server is just a DNS
client (either a recursive resolver or stub resolver). The communication
between the DoC Server and the existing DNS infrastructure (any
recursive or authoritative DNS server) is based on common DNS protocols.
This might be DNS-over-DTLS, but could also be classic DNS-over-UDP.
Would the following figure help?
+------------+ +------------+ +------------+
| | | | | DNS Infra- |
| DoC Client |--CoAP--| DoC Server |--DNS--| structure |
| | | | | | |
+------------+ +------------+ | +------------+
|
\ DNS over UDP|DTLS|...
> The document talks about "DNS Server" but it needs to be more precise - is this
> a DNS Recursive Resolver, Stub Resolver or DNS Authorative Server? The document
> needs to be more precise about this. Please see
> https://www.rfc-editor.org/rfc/rfc8499#page-16 for more details.
Thanks! We will clarify in the next version.
> Before WGLC, from the DNS perspective a working implementation for observation.
> While the authors and WG may feel that this DNS interaction will be
> constrained to the CoAP environment, but those who operate DNS
> infrastructure will feel this may be wishful thinking.
We provide two reference implementations, one DoC client implementation
available in the IoT operating system RIOT [1], and one DoC server
implementation in Python [2].
Best
Martine
[1] https://doc.riot-os.org/group__net__gcoap__dns.html
[2] https://github.com/miri64/aiodnsprox/
- [core] Dnsdir early review of draft-ietf-core-dns… Tim Wicinski via Datatracker
- Re: [core] Dnsdir early review of draft-ietf-core… Martine Sophie Lenders
- Re: [core] Dnsdir early review of draft-ietf-core… Tim Wicinski
- Re: [core] Dnsdir early review of draft-ietf-core… Martine Sophie Lenders
- Re: [core] Dnsdir early review of draft-ietf-core… Martine Sophie Lenders