IETF Logo Mail Archive

Re: [dns-privacy] [DNSOP] FW: New Version Notification for draft-pan-dnsop-edns-isp-location-00

Lanlan Pan <abbypan@gmail.com> Wed, 22 March 2017 04:30 UTC

Return-Path: <abbypan@gmail.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8B8B1129451; Tue, 21 Mar 2017 21:30:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.698
X-Spam-Level:
X-Spam-Status: No, score=-2.698 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, NORMAL_HTTP_TO_IP=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O913K2YuEinc; Tue, 21 Mar 2017 21:30:52 -0700 (PDT)
Received: from mail-wm0-x22e.google.com (mail-wm0-x22e.google.com [IPv6:2a00:1450:400c:c09::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5B224127698; Tue, 21 Mar 2017 21:30:52 -0700 (PDT)
Received: by mail-wm0-x22e.google.com with SMTP id n11so26284423wma.0; Tue, 21 Mar 2017 21:30:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=sft3eQa2N9RRMfZiH1w/9iOqAlJp2fjv+7PrzEVKs68=; b=eSgXCFkOlqANvU0t7vM8xw42Zo2taRpSgPeJys6kHuekIpP9rSrALiTX4TtLyIjwZK 2/FPSzf1mnt51BPDsQ53LuTEKC8j3iJkE+KI3W0l5rwTCdP+GeAdTCm1+kZNLWKS3MVd y2l+8VwpKtdX5OG/nUmgIeUFw/xWcZnmpumRERC4JaIQYLr+B6Uagh8iYh2sTPq8AXa8 OsNWElIBUOLHo5JmSyRIGicS1YdQZsKwuxSqN/qscO8/SGO/4LvnfC0PaRhExae8S/9V uTrgW7e4Lryg1ZjIQj6+cmGBXczO9975SPlZ50X4FcC6NBKlXL1wd5hgoZCi1YwIsakc wG5Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=sft3eQa2N9RRMfZiH1w/9iOqAlJp2fjv+7PrzEVKs68=; b=UjlLSeVh8dVoDn+6oPPpqCho3hoyQmY4LVovH6urgfcyLqp0lABKYOwSaBZZdjK2F1 IRFVnmjIPuNzgq4MVoJ/LWk3FRPDFZW63mbhTDpqZo3ifaHL3zmCtN9ykTyrs7dDVFho kpH8n7aSaOmtjwWBql0/pIiFl9xRWC2dFSildzwHkFZ3X+Y28oWTPCjOOGH9C96ez7MF MTctygi6KDyrYXAW8/o9AzKvqSCHdcp/lF9y3Q88haHKy2IeTm44RfYB7BCCOlZiaO28 DMlPoP8tr1deXcCQ+PTknW83EmNSNkDT3W3LLpvPqDFPeLJGYern/lKV87hrQT73STUc lTGg==
X-Gm-Message-State: AFeK/H0zcsDujp44sxolD9R9WnCpPESnDHsBqN9oIHm3CSvUiZSI7/8WSHitdwEyyZtBvoC6nu6nDdDiCW2/fg==
X-Received: by 10.28.128.147 with SMTP id b141mr5466460wmd.45.1490157050893; Tue, 21 Mar 2017 21:30:50 -0700 (PDT)
MIME-Version: 1.0
References: <000f01d29dfe$50b6b190$f22414b0$@cn> <CANLjSvXGO3rSpqb7hzwmV=vfm=UTHnQYqfBmt=uD9Mi8cL59Jg@mail.gmail.com> <16B293AD-27A2-4A6D-8A96-7CD847B59708@senki.org> <CANLjSvUJfU1cafGXHyg=DuCnhm09mBm5z4ve2_g6j2ONgt2tRQ@mail.gmail.com> <BBCEC002-D8D9-498E-8567-507181F9215E@develooper.com>
In-Reply-To: <BBCEC002-D8D9-498E-8567-507181F9215E@develooper.com>
From: Lanlan Pan <abbypan@gmail.com>
Date: Wed, 22 Mar 2017 04:30:40 +0000
Message-ID: <CANLjSvXA03qGN9TZ2oON7bJfygU7Uzor6H3ku83E_NhA3FBa7A@mail.gmail.com>
To: Ask Bjørn Hansen <ask@develooper.com>
Cc: Barry Raveendran Greene <bgreene@senki.org>, dns-privacy@ietf.org, dnsop <dnsop@ietf.org>, "fuyu@cnnic.cn" <fuyu@cnnic.cn>
Content-Type: multipart/alternative; boundary="001a1141e65aad9954054b4a39fa"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/1TR6iTfNJs2i8iTtNy5YndzclpI>
Subject: Re: [dns-privacy] [DNSOP] FW: New Version Notification for draft-pan-dnsop-edns-isp-location-00
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Mar 2017 04:30:56 -0000

Hi Ask,

Ask Bjørn Hansen <ask@develooper.com>于2017年3月21日周二 下午4:11写道:

>
> > On Mar 20, 2017, at 0:49, Lanlan Pan <abbypan@gmail.com> wrote:
> >
> > Everyone has known that physical location and the topology of content
> delivery DO NOT MATCH.
> > As last mail reply to Warren, my proposal can offer the SAME critical
> information for authoritative server to make tailored response decision as
> ECS's client subnet.
> > Because in database such as maxmind,  ECS (client subnet) can be map
> into <AS number,  country, province, ISP>, which also guide network
> topology.
> > Therefore, if ECS has ANY value for optimizing content delivery on the
> Internet, then EIL has.
> >
> > For example,If ECS is tell AUTH :  the query is from 114.240.0.0/24.
> The AUTH knows that ECS(114.240.0.0/24) is indicated (CHINA, BEIJING,
> UNICOM), which is not only geolocation, but also contains network topology
> information. Then AUTH can return satisfied ip address according to the
> topology of content delivery.
>
> Except for very small networks, the network topology isn’t just the name
> of the provider. I suspect that if you took away all the geoip type lookups
> the larger content delivery systems would work fine; but if you did the
> opposite (what you are proposing with EIL) they would not.
>
> I believe Netflix has public information about how their OpenConnect
> system uses BGP and network topology information.
>

CDN providers configure their BGP with its AS neighbor, the network
topology optimization focus on, make their datacenters connect to more and
more important ISP (such as Level 3, Comcast, etc) , with faster and faster
connect speed.
Consider about DNS based delivery, as last mail I reply to brian, CDN can
work finer if resolver‘s IP nearby client’s IP.

See this example of ECS : Which CDNs support edns-client-subnet?
<https://www.cdnplanet.com/blog/which-cdns-support-edns-client-subnet/>,
they *map the ECS client subnet into the geolocation (what EIL give)*, and
then make DNS decision. Because on AUTH side, they do not so care about
each client subnet, but configure on aerial view geolocation level. AUTH no
need configure for each client subnet, geoip-level precision check is offen
took for IP connect speed sample test.

Therefore, EIL <country, province, isp> can give the *SAME* *sufficent*
geolocation information as ECS for AUTH, to decide which is the best IP
addresses to response, because each CDN IP *serves many client subnets in
the same area*.

For example, all of these ECS can be map into*  EIL(CHINA, BEIJING, UNICOM)*

*: ECS(103.3.120.0/24 <http://103.3.120.0/24>), ECS(111.192.0.0/16
<http://111.192.0.0/16>),ECS(114.240.0.0/16 <http://114.240.0.0/16>),
ECS(120.132.0.0/16 <http://120.132.0.0/16>), ECS(123.112.0.0/16
<http://123.112.0.0/16>), ECS(124.64.0.0/16 <http://124.64.0.0/16>),
ECS(125.33.0.0/16 <http://125.33.0.0/16>), ECS(202.106.0.0/16
<http://202.106.0.0/16>), ECS(210.82.0.0/16 <http://210.82.0.0/16>),
ECS(219.158.128.0/24 <http://219.158.128.0/24>), ECS(221.216.0.0/16
<http://221.216.0.0/16>), ECS(222.128.0.0/16 <http://222.128.0.0/16>),
ECS(49.152.0.0/16 <http://49.152.0.0/16>), ECS(61.48.0.0/16
<http://61.48.0.0/16>),......*


>
> Ask (speaking only for myself)
>
> --
致礼  Best Regards

潘蓝兰  Pan Lanlan

v2.23.0 | Report a Bug | By Email