IETF Logo Mail Archive

Re: [dnsext] New Version Notification for draft-ah-dnsext-rfc1995bis-ixfr-02

Mark Andrews <marka@isc.org> Mon, 22 August 2011 19:48 UTC

Return-Path: <marka@isc.org>
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 481EF21F8C90 for <dnsext@ietfa.amsl.com>; Mon, 22 Aug 2011 12:48:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.374
X-Spam-Level:
X-Spam-Status: No, score=-2.374 tagged_above=-999 required=5 tests=[AWL=0.225, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ACslpoy0CabU for <dnsext@ietfa.amsl.com>; Mon, 22 Aug 2011 12:48:57 -0700 (PDT)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) by ietfa.amsl.com (Postfix) with ESMTP id B732221F8C31 for <dnsext@ietf.org>; Mon, 22 Aug 2011 12:48:57 -0700 (PDT)
Received: from bikeshed.isc.org (bikeshed.isc.org [IPv6:2001:4f8:3:d::19]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client CN "bikeshed.isc.org", Issuer "ISC CA" (verified OK)) by mx.pao1.isc.org (Postfix) with ESMTPS id C6789C9422; Mon, 22 Aug 2011 19:49:53 +0000 (UTC) (envelope-from marka@isc.org)
Received: from drugs.dv.isc.org (unknown [IPv6:2001:470:1f00:820:6233:4bff:fe01:7585]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by bikeshed.isc.org (Postfix) with ESMTPSA id 2C8F4216C7B; Mon, 22 Aug 2011 19:49:53 +0000 (UTC) (envelope-from marka@isc.org)
Received: from drugs.dv.isc.org (localhost [127.0.0.1]) by drugs.dv.isc.org (Postfix) with ESMTP id 0C554130B8DB; Tue, 23 Aug 2011 05:49:51 +1000 (EST)
To: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>
From: Mark Andrews <marka@isc.org>
References: <4DB81069.3080404@nic.cz> <4DF9B5BD.7010900@nic.cz> <a06240803ca1fd7525c50@10.31.201.23> <BANLkTinjRDHyKH-tLEoejodXb2+7qQLO7w@mail.gmail.com> <a06240801ca2102b8b4f2@10.31.201.23> <BANLkTikoVVaXF2_LJ3KHm6P7oFpfC+n2tw@mail.gmail.com> <a06240801ca21246f76de@10.31.201.23> <BANLkTinVfuL0WEYwaycTaAnWDS9vYF5NjQ@mail.gmail.com> <4DFC9C20.4030401@necom830.hpcl.titech.ac.jp> <BANLkTimhLJfsmMe3AE34yLrOQ+zyZPBdgQ@mail.gmail.com> <4E000B93.3030306@necom830.hpcl.titech.ac.jp> <8A34D894-4323-4948-811E-6568C838A503@nic.cz> <4E4D7E7E.1070700@necom830.hpcl.titech.ac.jp> <80B25AE0-4DB6-4DBB-866B-4DB8F59D6DA0@nic.cz> <20110821194704.2793E1303C8E@drugs.dv.isc.org> <1314015892.2779.45.camel@shane-desktop> <4E525476.4070001@necom830.hpcl.titech.ac.jp>
In-reply-to: Your message of "Mon, 22 Aug 2011 22:07:02 +0900." <4E525476.4070001@necom830.hpcl.titech.ac.jp>
Date: Tue, 23 Aug 2011 05:49:50 +1000
Message-Id: <20110822194951.0C554130B8DB@drugs.dv.isc.org>
Cc: dnsext@ietf.org
Subject: Re: [dnsext] New Version Notification for draft-ah-dnsext-rfc1995bis-ixfr-02
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Aug 2011 19:48:58 -0000

In message <4E525476.4070001@necom830.hpcl.titech.ac.jp>, Masataka Ohta writes:
> Shane Kerr wrote:
> 
> > Consider an environment where one has 2 distribution servers at a node,
> 
> Only 2 distribution servers? It should be a toy zone.
> 
> And, do you mean "zone", not "node"?
> 
> > If the node suffers a power failure, then it is quite possible that both
> > distribution servers will need a full AXFR when they restart.
> 
> Are you seriously saying that it is quite possible that two servers
> simultaneously loss checkpointing information because of power
> failure?

No.  I think Shane means that they have been out of contact long
enough that the AXFR style response is smaller than the IXFR style
response and the upstream supplied a AXFR style response.

> Even then, there is no point of IXFR-only because, with your example,
> neither server can offer IXFR.

You are missing Shanes point, which is that after the initial AXFR
style response that the slaves that transferred from the DM that
transfered first, and hence had a lower serial, will not be able
to get a delta style response from the other DM.

> > If zone
> > updates are frequent, there is a good chance that they will not have the
> > exact same starting serial.
> 
> So?

See above.
 
> > One solution is to have a single distribution server.
> 
> It's no solution. I'm afraid you completely misunderstand DNS.

Shane isn't saying that it is a desirable solution.
 
The other solution is to prevent the axfr's out from the DM's until they
both have the same serials available ixfr from.

The is not to say that I'm apposed to ixfr only.

> 							Masataka Ohta
> _______________________________________________
> dnsext mailing list
> dnsext@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsext
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email