[DNSOP] Re: Definition of DNS latency
Warren Kumari <warren@kumari.net> Wed, 28 January 2026 16:31 UTC
Return-Path: <warren@kumari.net>
X-Original-To: dnsop@mail2.ietf.org
Delivered-To: dnsop@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 0BF53AE5C508 for <dnsop@mail2.ietf.org>; Wed, 28 Jan 2026 08:31:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_FONT_LOW_CONTRAST=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=kumari.net
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id o2Syqjw8xX7a for <dnsop@mail2.ietf.org>; Wed, 28 Jan 2026 08:31:27 -0800 (PST)
Received: from mail-ed1-x52c.google.com (mail-ed1-x52c.google.com [IPv6:2a00:1450:4864:20::52c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 68C02AE5C501 for <dnsop@ietf.org>; Wed, 28 Jan 2026 08:31:27 -0800 (PST)
Received: by mail-ed1-x52c.google.com with SMTP id 4fb4d7f45d1cf-64b7318f1b0so76551a12.2 for <dnsop@ietf.org>; Wed, 28 Jan 2026 08:31:27 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1769617886; cv=none; d=google.com; s=arc-20240605; b=ftoSBanT9BsZZLtvk/hYh3UcVN52HFPgmEoheR9lq/bnNt0J6MlMGpbPa3wNHm9I3w ANmEUF67XlBPzKaV7r/cUHljCSyz3hWUKPCGlkKg31W/ibryyaOYwv608pQO/gRNHd1V DV0Tj+cxcbCUOkBx4sIhmE6UniD2CfFXCWR490nliz7GQEyrltSwni5pMD+lgl7lVlWS /xXAm2cg+8cVNngCKq8L5VXEnTmJwJq2Om+s0vdbEVcSwLPVa6ET2CdAlhfvujPAsAG3 WiHAP53QWrx/jQs68pVbe4+ky+OiL8ruYF76AirAzu4AJvRywiQ6M8cb3ZTIPJvD8Lng XigA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=cc:to:subject:message-id:date:in-reply-to:from:references :mime-version:dkim-signature; bh=007fh2sAw1j4+SE4FrTg1LIewtfYT/XRXKirrJN3LiA=; fh=JsUowv7+R1fVtW8dvLtRtPCbftXa1XvqpMF7PUB7y2Y=; b=fMqKcDTwn/Z1g2j4GUg1GT8L7Rhx6rylyGx3reXqWWp9If3zQW7R/UA/aU516UwSNA eCubWgpbXfcsIbByMotrL4Ak62lGBuLXu8CSZbct2oADS9e+eNkoxM7OgCmbQG5J65lt crHXw+hXCzMuz+wVMVEGi2xn/QFsZbchvP3K3MUjXXKV7Is8R5p6vTS/G4zApd8a3+jI UsKraNV0O9zyNhiR71LbRVQuwO5lsIXU8bnd7BWBdRgSdY1moIPOenShHR+DOs1bjM6C bmN9Vj4YBNZ7p04E60qaHum2slv6nSBuQN41ch2aejfUZx9GK1/eW8Fmz/Og6m7zzA7Z VZPQ==; darn=ietf.org
ARC-Authentication-Results: i=1; mx.google.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari.net; s=google; t=1769617886; x=1770222686; darn=ietf.org; h=cc:to:subject:message-id:date:in-reply-to:from:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=007fh2sAw1j4+SE4FrTg1LIewtfYT/XRXKirrJN3LiA=; b=VbsoTVbDM+gJbc3jz2GGd+MvoBWAuTKa3/1Q0eUyhrbvShZh5Fszyv6qZrmQZUdKsx UCsQOCmhWE0LGbRpCq+KCUfhnvkHFXGybX8/sDC8KYpoOoJJ5XJfyrm/yTMYAM/58yXe kN4SHN7WAwFRutcqQTQtqkOlZlREWswg1gqhxTkwi0EeLYxlUpDNdfExhxZoAlpXT7Sv L6Vas9G0hp2KqGeh23JeevuFw56euGYZIPRCi3vHl4gTA48vXwoAx+rwCMuairLO/R02 T8ENzSA5icVQF79AtyA6y7a2YSdHEj8y1OL4yvFGLxSPWXSZOWmB3nrkSXRAwuZz2Xbs K2uA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1769617886; x=1770222686; h=cc:to:subject:message-id:date:in-reply-to:from:references :mime-version:x-gm-gg:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=007fh2sAw1j4+SE4FrTg1LIewtfYT/XRXKirrJN3LiA=; b=EAG+ObgdsXJkuj41JSuLkMdkYues1AGljOizYsFzMdbnKf78wZtsmosgCuZyw9H8k4 eo9jRTCnRTSzMrjom8loj77GQgidt242gjlRcfFN02uikGPkEfJTf4F2FT9z5N+S3KKc osoEoUk/HyauZvmJ7YEnqPF7sEo7yJnnrYwy+bpgZttkd3AadhYq7jOFgy4BEX3vwb7O C9D+hCF7h+CnEXVk/fxNA/P60ObjJVFNpXblydikVB5x7L3OWpG0pLxkxsva0lsRDCwF MN3G8SzSWBwt/vZdwd1+J8gt0ddBMIWHX92CB/As9mtbWmipIdMzcwvHvR7tohS1UO5E V/SA==
X-Gm-Message-State: AOJu0YzvyZXk+qMb732TeCA0yqvtRxhDU/9xjozDi6QisTc6iOlLwdNr 2z+YA3oZDCXxDmDPnCF19xGOl3HiqQN1r3nG5WH9cya+2T2vHrqCWFMSeBgaM4/tvUJG7yg0Juy hBxpnAELih08W2vj4kTUatuevTh/rJDsGavf2eaAfjw==
X-Gm-Gg: AZuq6aJEYPFPPhSE0hhcLIpKF3ctTm1bqFbzwqp5cAGEjGd9ifEwm2tQreQoSRA71Cx Eog4OwC7AXdZ8KJ/8b0eALnSnS9gqz30RpEwJn9HhQZQMBG5rvzRKkZ6JQ82ItQhfSc2wlx0EaK 2xstX39bzj8wFH7tvYMrwBcZMX33nICB8f+VsDDWznDtYo9j1harGkMxF5G9LEMLpitRUg4tGLf oaUFg1ooD5ENTfiUmTBjqGCXQnQ5NQtw4FZG+9Z+Um/ABLNLhdVlux5Mp3V9K9Yxmz8M+UDpKRe XTiDV7+msLrHZcMu6PY=
X-Received: by 2002:a05:6402:1467:b0:658:c1b0:1501 with SMTP id 4fb4d7f45d1cf-658c1b01bdemr431504a12.31.1769617885840; Wed, 28 Jan 2026 08:31:25 -0800 (PST)
Received: from 649336022844 named unknown by gmailapi.google.com with HTTPREST; Wed, 28 Jan 2026 08:31:25 -0800
Received: from 649336022844 named unknown by gmailapi.google.com with HTTPREST; Wed, 28 Jan 2026 08:31:25 -0800
Mime-Version: 1.0
References: <505c478e.3b18.19bfdad2b54.Coremail.scooct@163.com>
X-Superhuman-ID: mky8samr.05bc508b-f43b-49e9-ae77-18ca28c5051c
From: Warren Kumari <warren@kumari.net>
X-Mailer: Superhuman Desktop (2026-01-27T20:06:07Z)
X-Superhuman-Draft-ID: draft0025de17944237bf
In-Reply-To: <505c478e.3b18.19bfdad2b54.Coremail.scooct@163.com>
Date: Wed, 28 Jan 2026 08:31:25 -0800
X-Gm-Features: AZwV_QhJMj_5q4msnW42GMxJd96mlDOuTPgCs1CS8icb9JxInzqqUp-iA-w86kQ
Message-ID: <CAHw9_iJm3r-hFNC5RnHO74jnCaFcpvHs1m=bZH17KJF+xXpGoQ@mail.gmail.com>
To: Cathy Zhang <scooct@163.com>
Content-Type: multipart/alternative; boundary="0000000000007959ac0649754529"
Message-ID-Hash: 7AX5QU6A6YUSSNQISQZAF7O5ALWMQ2FV
X-Message-ID-Hash: 7AX5QU6A6YUSSNQISQZAF7O5ALWMQ2FV
X-MailFrom: warren@kumari.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: dnsop@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [DNSOP] Re: Definition of DNS latency
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/8AHaBQwQvXagtgzSs6twgKB_T-Y>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>
Depends what you mean by "defining DNS query/response latency". If you are meaning "The latency from a stub to a recursive MUST be less than 100ms. The latency from a recursive to an auth MUST be less then 123.4ms", then no, I don't think that there is anything like that (modulo timeouts and similar). There are, however, many RFCs about the desire to minimize latency, including things like: RFC9824 - "Compact Denial of Existence in DNSSEC" <https://datatracker.ietf.org/doc/rfc9824/> - saves small bits of time by not having to fetch from a DB style setup. RFC9715 - "IP Fragmentation Avoidance in DNS over UDP" <https://datatracker.ietf.org/doc/rfc9715/> - by not failing over to TCP, you can save quite a few RTT. RFC9520 - "Negative Caching of DNS Resolution Failures" <https://datatracker.ietf.org/doc/rfc9520/> - if you cache non-response answers you can immediately return these to clients. RFC9276 - "Guidance for NSEC3 Parameter Settings" <https://datatracker.ietf.org/doc/rfc9276/> - a bit of a stretch, but not doing iterations saves, um, many microseconds. RFC9210 - "DNS Transport over TCP - Operational Requirements" <https://datatracker.ietf.org/doc/rfc9210/> - if you *do* have to fail over to TCP, making sure it actually works means clients get an answer, and don't just hang. RFC9156 - "DNS Query Name Minimisation to Improve Privacy" <https://datatracker.ietf.org/doc/rfc9156/> - trades some latency to improve privacy RFC8906 - "A Common Operational Problem in DNS Servers: Failure to Communicate" <https://datatracker.ietf.org/doc/rfc8906/> - if you don't answer, or answer incorrectly, some queries take much longer. RFC8806 - "Running a Root Server Local to a Resolver" <https://datatracker.ietf.org/doc/rfc8806/> - by having zones locally you don't need to do a lookup. RFC8198 - "Aggressive Use of DNSSEC-Validated Cache" <https://datatracker.ietf.org/doc/rfc8198/> - if you know (through e.g NSEC) that a name doesn't exist, you can immediately send back a negative answer. RFC8020 - "NXDOMAIN: There Really Is Nothing Underneath" <https://datatracker.ietf.org/doc/rfc8020/> - same. If you get an NXD for foo.example, you know that bar.foo.example doesn't exist RFC7706 - "Decreasing Access Time to Root Servers by Running One on Loopback" <https://datatracker.ietf.org/doc/rfc7706/> - same as RFC8806. RFC4472 - "Operational Considerations and Issues with IPv6 DNS" <https://datatracker.ietf.org/doc/rfc4472/>, RFC3901 - "DNS IPv6 Transport Operational Guidelines" <https://datatracker.ietf.org/doc/rfc3901/> - Make DNS fast by making sure IPv6 works too…. RFC3258 - "Distributing Authoritative Name Servers via Shared Unicast Addresses" <https://datatracker.ietf.org/doc/rfc3258/> - A big one. Any cast FTW! W On Mon, Jan 26, 2026 at 11:19 PM, Cathy Zhang <scooct@163.com> wrote: > Hello everyone, > > Are there any RFCs or drafts defining DNS query/response latency? > > Regards, > Cathy > > _______________________________________________ > DNSOP mailing list -- dnsop@ietf.org > To unsubscribe send an email to dnsop-leave@ietf.org >
- [DNSOP] Definition of DNS latency Cathy Zhang
- [DNSOP] Re: Definition of DNS latency Warren Kumari
- [DNSOP] Re: Definition of DNS latency Carlos Horowicz
- [DNSOP] Re: Definition of DNS latency Steve Crocker
- [DNSOP] Re: Definition of DNS latency Cathy Zhang
- [DNSOP] Re: Definition of DNS latency Geoff Huston
- [DNSOP] Re: [Ext] Re: Definition of DNS latency Paul Hoffman
- [DNSOP] Re: [Ext] Re: Definition of DNS latency Joe Abley
- [DNSOP] Re: Definition of DNS latency Cathy Zhang
- [DNSOP] Re: Definition of DNS latency Bashan Zuo