Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-tcp-requirements-05.txt
Giovane Moura <giovane.moura@sidn.nl> Wed, 20 November 2019 10:10 UTC
Return-Path: <giovane.moura@sidn.nl>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6377D1208E6 for <dnsop@ietfa.amsl.com>; Wed, 20 Nov 2019 02:10:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sidn.nl
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 09So01KbAZUW for <dnsop@ietfa.amsl.com>; Wed, 20 Nov 2019 02:10:54 -0800 (PST)
Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-db5eur01on0611.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe02::611]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 110ED1208DE for <dnsop@ietf.org>; Wed, 20 Nov 2019 02:10:52 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=SqTsJOhjVLPvmYPAWLQSFV0/0vy8oiV/j0rg3MwO7bMQnikqIfO6oaolHMR88CV2l4P1Vi7BpQqFN17BC86gsRJ9YaHH226dk/sZURspb4fN2aJ6rDGVi8/6bB4ToK5h2ByQuWPvYADq1/3KQaL6x4DGUru1NzhdIsrzksFVckyB7tiu9Eqbl14gV5y7xT87AoPZ0MeDjlqOoyvyceAuJCckdwWiNjP8oTFRD/hjXXD8ocWR3VyaaltFe8a8vyAzlPd37Kex4SEJopDaM+0C5EWzbszzOqUYiaba61DgaN274HkETDxC9akoPL/dHKg8evZiq3Jda01olW1Zyxjz+w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HrVi5CKER/4qvDXlTdjsC/3G8lZ4padI9Sz/m/rFXlk=; b=B2lBzt28mtIB7t/2H+Bqy7Xa8wWE3hbYOZSN7eJIzI/N1ZgQXyahXPqIOedAUpks+3K+7mZuWMIpihMcDgAsIXqmHoolV1eEJVL8OsgqA7zBgXkM2E3CIr04WwiVGA7ZciOZNVcE1EMYfTFFEE669fNmQAup/cLx5gQlWCmmA2jt6V2SUfdotlzX8N3KkolnQ5O1f0Xr2CUQfH8NhBPb25Rk2C1aTrSSpNRWcirX4c0A7frHHbHZ6AbT60+Z1l36WOcz9zdcicwptVAAkoTX5Mg1/NnybxJ3nUM+hrheIAw9qr+MQMgmdYdFGcPoWOO1zzGybDeENKcS7Z+WXrC1wQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=sidn.nl; dmarc=pass action=none header.from=sidn.nl; dkim=pass header.d=sidn.nl; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sidn.nl; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HrVi5CKER/4qvDXlTdjsC/3G8lZ4padI9Sz/m/rFXlk=; b=lPDUj5qgZe/NlItyQRg34lwlQrFw+uwYXJvjwg5f5wzUC/pWnWHM/2W8CVjaqDhVlhMW/hNtlUZVh3JFrRmESr7cwGF5/FQihTGllpzPFNh18GaXFtdAbJwe2FPc5q3bWOZpnaTuwh5rh4Ess12x4GTbRHmKgnpm2TqJLdHKles=
Received: from AM6P194MB0328.EURP194.PROD.OUTLOOK.COM (52.135.167.17) by AM6P194MB0455.EURP194.PROD.OUTLOOK.COM (52.135.166.161) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2451.28; Wed, 20 Nov 2019 10:10:50 +0000
Received: from AM6P194MB0328.EURP194.PROD.OUTLOOK.COM ([fe80::74fb:3538:c11e:103]) by AM6P194MB0328.EURP194.PROD.OUTLOOK.COM ([fe80::74fb:3538:c11e:103%6]) with mapi id 15.20.2474.015; Wed, 20 Nov 2019 10:10:49 +0000
From: Giovane Moura <giovane.moura@sidn.nl>
To: "dnsop@ietf.org" <dnsop@ietf.org>
Thread-Topic: [DNSOP] I-D Action: draft-ietf-dnsop-dns-tcp-requirements-05.txt
Thread-Index: AQHVkaiO626tRylMHE6UNJMV3PcEyKd4MGCAgBvB3gA=
Date: Wed, 20 Nov 2019 10:10:49 +0000
Message-ID: <05bb0bf2-3221-919a-0b52-fbb66df74f31@sidn.nl>
References: <157271808929.6094.7926587135820341966@ietfa.amsl.com> <D608BC6F-AD66-4A2A-AE4A-2D306F7FC05E@verisign.com>
In-Reply-To: <D608BC6F-AD66-4A2A-AE4A-2D306F7FC05E@verisign.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-clientproxiedby: AM0PR10CA0039.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:20b:150::19) To AM6P194MB0328.EURP194.PROD.OUTLOOK.COM (2603:10a6:209:4c::17)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=giovane.moura@sidn.nl;
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [31.21.111.111]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 5b22b0db-6ee6-411d-2af1-08d76da1eb06
x-ms-traffictypediagnostic: AM6P194MB0455:
x-ms-exchange-purlcount: 7
x-microsoft-antispam-prvs: <AM6P194MB0455181C417CCAE91BF789D6F14F0@AM6P194MB0455.EURP194.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 02272225C5
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(136003)(396003)(346002)(366004)(376002)(39840400004)(189003)(199004)(305945005)(6506007)(386003)(36756003)(71190400001)(31696002)(86362001)(71200400001)(66446008)(6916009)(6512007)(6246003)(2906002)(5640700003)(229853002)(478600001)(6436002)(6486002)(66574012)(6306002)(966005)(25786009)(14454004)(66556008)(8936002)(66066001)(1730700003)(316002)(7736002)(2351001)(66476007)(64756008)(256004)(476003)(446003)(99286004)(2616005)(11346002)(486006)(31686004)(66946007)(5660300002)(186003)(52116002)(53546011)(44832011)(102836004)(76176011)(26005)(81166006)(3846002)(2501003)(6116002)(81156014)(8676002); DIR:OUT; SFP:1101; SCL:1; SRVR:AM6P194MB0455; H:AM6P194MB0328.EURP194.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: sidn.nl does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: YlsO+8IuGDFZiWg57s4PJOLZMHA552uXS5/HKplkZ0yKT7vR3YLlfQGdh02CZCtQAuvoPKFZHPwgLHTiuKQNqiOmZKRUWSsJGJI8ph6vbEiwkByuxVZeqUVWDIfGluhDhjIvs8jc5LPyj4vaGOV0URMgpbfVXpadcg/ZfZH6knFf64rHV5uuis/Vx+JjIHvrRl4N+p/on2OWKYoTth9HUcw1tp5rcv/DpInqiCqaglvMLi0Jp5+4XsxnbXuHXFGqj5mql135zfWp0fc0PE/59F7G+0n7X+uybtcK0mhS2xDKSiPq6ZJ/6my6ApxuPB7M5Dy2heTrxsJ56picJJcsDhzV7eokwIG4wUKxnrg9BmAcs/Hyz3YMuODkAgjXLGQeSquPs5YewJLWXt1i5TF5TILum+il6tkTw+89EvckY1rAYRvs0o01v3h3wtilXDp8fIbByhYjN/AGlPWmFOB34n5WTJtA2iDXl1RvFfGVpeI=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="Windows-1252"
Content-ID: <F8784BE13DB38C419EA27226DF39991F@EURP194.PROD.OUTLOOK.COM>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: sidn.nl
X-MS-Exchange-CrossTenant-Network-Message-Id: 5b22b0db-6ee6-411d-2af1-08d76da1eb06
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Nov 2019 10:10:49.8175 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: ab4d3626-c1c5-4a75-ab85-427f1a644a7d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: bwldkEMICBTp+puSfk16uJxTSOOjhqPg6DP0mJ8wOtEA8nIgZd3DvSAjgpRHrq+6kOj+1j6DZIdEqhOUKVf6Dw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6P194MB0455
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/12cFMMcyt375QQEh2v0jm6k163I>
Subject: Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-tcp-requirements-05.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Nov 2019 10:10:56 -0000
Thanks Duane, For what is worth, I took a look on volume of TCP queries over the years reaching each Root Servers letter, just to have a feeling on how TCP traffic is evolving on DNS: https://github.com/gmmoura/root-RSSAC002-timeseries It seems that DNS over TCP is slowly increasing for most letters, and still under 10% for most letters. /giovane ps: thanks for your https://github.com/rssac-caucus/RSSAC002-data data repository, helps tons. On 11/2/19 7:17 PM, Wessels, Duane wrote: > Hello dnsop, > > This draft has been updated with the following changes since -04: > > - added DNS-over-TLS to the abstract > - added recent discussions about avoiding fragmentation in DNS > - changed "SHOULD use TFO" to "MAY use TFO" due to concerns expressed in the WG > - changed discussion of KSK rollover to past tense > - added privacy consideration text > - added a few new references > > The authors would like to take this draft to working group last call. > > DW > > >> On Nov 2, 2019, at 1:08 PM, internet-drafts@ietf.org wrote: >> >> >> A New Internet-Draft is available from the on-line Internet-Drafts directories. >> This draft is a work item of the Domain Name System Operations WG of the IETF. >> >> Title : DNS Transport over TCP - Operational Requirements >> Authors : John Kristoff >> Duane Wessels >> Filename : draft-ietf-dnsop-dns-tcp-requirements-05.txt >> Pages : 26 >> Date : 2019-11-02 >> >> Abstract: >> This document encourages the practice of permitting DNS messages to >> be carried over TCP on the Internet. This includes both DNS over >> unencrypted TCP, as well as over an encrypted TLS session. The >> document also considers the consequences with this form of DNS >> communication and the potential operational issues that can arise >> when this best common practice is not upheld. >> >> >> The IETF datatracker status page for this draft is: >> https://datatracker.ietf.org/doc/draft-ietf-dnsop-dns-tcp-requirements/ >> >> There are also htmlized versions available at: >> https://tools.ietf.org/html/draft-ietf-dnsop-dns-tcp-requirements-05 >> https://datatracker.ietf.org/doc/html/draft-ietf-dnsop-dns-tcp-requirements-05 >> >> A diff from the previous version is available at: >> https://www.ietf.org/rfcdiff?url2=draft-ietf-dnsop-dns-tcp-requirements-05 >> >> >> Please note that it may take a couple of minutes from the time of submission >> until the htmlized version and diff are available at tools.ietf.org. >> >> Internet-Drafts are also available by anonymous FTP at: >> ftp://ftp.ietf.org/internet-drafts/ >> >> _______________________________________________ >> DNSOP mailing list >> DNSOP@ietf.org >> https://www.ietf.org/mailman/listinfo/dnsop > > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop >
- [DNSOP] I-D Action: draft-ietf-dnsop-dns-tcp-requ… internet-drafts
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-tcp-… Wessels, Duane
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-tcp-… Giovane Moura
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-tcp-… Puneet Sood
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-tcp-… Wessels, Duane
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-tcp-… Paul Vixie
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-tcp-… Wessels, Duane