IETF Logo Mail Archive

Re: [DNSOP] Review of draft-livingood-dns-redirect-00

Mark Andrews <marka@isc.org> Fri, 17 July 2009 04:19 UTC

Return-Path: <marka@isc.org>
X-Original-To: dnsop@core3.amsl.com
Delivered-To: dnsop@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BA33E28C215 for <dnsop@core3.amsl.com>; Thu, 16 Jul 2009 21:19:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.503
X-Spam-Level:
X-Spam-Status: No, score=-2.503 tagged_above=-999 required=5 tests=[AWL=0.096, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k0ihRy3+zhtw for <dnsop@core3.amsl.com>; Thu, 16 Jul 2009 21:19:35 -0700 (PDT)
Received: from farside.isc.org (farside.isc.org [IPv6:2001:4f8:3:bb::5]) by core3.amsl.com (Postfix) with ESMTP id 62BF528C1DD for <dnsop@ietf.org>; Thu, 16 Jul 2009 21:19:35 -0700 (PDT)
Received: from drugs.dv.isc.org (drugs.dv.isc.org [IPv6:2001:470:1f00:820:214:22ff:fed9:fbdc]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "drugs.dv.isc.org", Issuer "ISC CA" (not verified)) by farside.isc.org (Postfix) with ESMTP id 3021CE601C; Fri, 17 Jul 2009 04:20:05 +0000 (UTC) (envelope-from marka@isc.org)
Received: from drugs.dv.isc.org (localhost [127.0.0.1]) by drugs.dv.isc.org (8.14.3/8.14.3) with ESMTP id n6H4K2ZR004336; Fri, 17 Jul 2009 14:20:02 +1000 (EST) (envelope-from marka@drugs.dv.isc.org)
Message-Id: <200907170420.n6H4K2ZR004336@drugs.dv.isc.org>
To: Andrew Sullivan <ajs@shinkuro.com>
From: Mark Andrews <marka@isc.org>
References: <C67B83C4.E855%Jason_Livingood@cable.comcast.com> <20090713202948.GE3018@shinkuro.com> <20090714212642.GD822@sources.org> <20090715162946.GO6313@shinkuro.com> <9A580F7F-2CC6-4E86-85E9-B18C4745F866@dnss.ec> <20090716110830.GA7324@shinkuro.com>
In-reply-to: Your message of "Thu, 16 Jul 2009 07:08:31 -0400." <20090716110830.GA7324@shinkuro.com>
Date: Fri, 17 Jul 2009 14:20:02 +1000
Sender: marka@isc.org
Cc: dnsop@ietf.org
Subject: Re: [DNSOP] Review of draft-livingood-dns-redirect-00
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Jul 2009 04:19:36 -0000

In message <20090716110830.GA7324@shinkuro.com>, Andrew Sullivan writes:
> Well, I'd discuss it, anyway.  I know that if someone came with a
> document outlining the best way to do split-brain DNS -- which is
> widely deployed and an alternative namespace if ever I've seen one --
> and especially how _not_ to do it, I would take it to be a serious
> contribution.  Similarly, I am listed as one of the authors of the
> DNS64 draft, which is (let's face it) a way to configure an
> interative-mode resolver so that it consistently replaces one kind of
> answer with another kind (or "lies", if you like).  Yet nobody seems
> to have thought so far that _that_ is an especially bad idea.

The big difference is that you still ultimately go to the machine
that you are looking up.  You are not changing the namespace by
adding or removing names.  Additionally the amount rewriting of
AAAA queries will reduce over time as the world moves to IPv6.
There is very little collateral damage being done by DNS64.

There is a lot of collateral damage when you map NXDOMAIN/NXRRSET
to a search page.

Mark
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email