Re: [DNSOP] Francesca Palombini's No Objection on draft-ietf-dnsop-dns-tcp-requirements-13: (with COMMENT)

Geoff Huston <gih@apnic.net> Sat, 30 October 2021 00:42 UTC

Return-Path: <gih@apnic.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EEC263A1A39; Fri, 29 Oct 2021 17:42:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=apnic.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hP0kk1NQwaeZ; Fri, 29 Oct 2021 17:42:13 -0700 (PDT)
Received: from AUS01-ME3-obe.outbound.protection.outlook.com (mail-me3aus01on20620.outbound.protection.outlook.com [IPv6:2a01:111:f403:7004::620]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 539E03A1A38; Fri, 29 Oct 2021 17:41:54 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=YFv4GS9jPGn+/TRloymPGbai7Zpsy91fa4HvUQUjtbefJJFhrnROBEPLcnpQtuxisqipAJiuhhaYP+DNAKxkNj2Oo1eFZWuDGuBUT7zabXQF/Ub7weaOEBiCtwZDrp5PNaMriwpuJ4mbiQpa2lLstqPweOEmqdYx8vvCC8rFEupXdq50O7rQnrT99yCPpkdRbVYFpf30Jusub2nlgfKkgxmlU6+jDNPTsmvEbebKjtSYjqmYcj9pKUAkykF7wq78HRp+2PV/z6VHMklMhJKZHnJOe72kxwUVqSgwLwIG4JFw2fhK6UrzusTPsKlOQC/1QgiAZ7U+8H5HmRSXjaGaww==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=8AdRhqbx5tAwzyXwuudzDn2mHtFD4rwf61XV5TL0/qc=; b=R3AjRUSstveWi8tDgUS+DLj2ZB/PBTOouA7Fng0R/I5JiRmOuZVX0wlOCkLU9akz3Ns7oPG9GcHV/8NIwpspd/CzVt8IWbEefRdNesW2of+MS1Wq45/941pg4V5tp5EB1WQlffNWHun8qc0hByrn7duL2GPAYepXtOJyy7DPM9tGTyoILHZZcFsgLYRrdFDTK1o/kQclVm7h6ejiOVWvypaZL6lX0SNqPfOTmuP7PCQbFLzUVzdXvzDCnHaNOqvovAO9ALBWqiBcuMfZcp+5LiZAFXYWxrpxzfgnkQKkW8r+XAi5jkbPAC7LDtrDncjOH3+cbE8Mw8JMvX3cNxQEPA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=apnic.net; dmarc=pass action=none header.from=apnic.net; dkim=pass header.d=apnic.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apnic.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=8AdRhqbx5tAwzyXwuudzDn2mHtFD4rwf61XV5TL0/qc=; b=fV4gPOuTPV9IJdFMXkXnCcUoUqo7QRoOZm3CPf00iBgewcraTTH0EioutKQ++atRmBOQc1KJdIl5H9efL2SEI7C8hTL20d43e2I5aZ96+k5Fesu2rXjZWXA+aZSJ956/9IDiZBTEAqOaUeIfvXn+fshYfSrY6ALeP9vHD859ntw=
Received: from SYZP282MB3169.AUSP282.PROD.OUTLOOK.COM (2603:10c6:10:176::18) by SY6P282MB3374.AUSP282.PROD.OUTLOOK.COM (2603:10c6:10:171::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4649.15; Sat, 30 Oct 2021 00:41:40 +0000
Received: from SYZP282MB3169.AUSP282.PROD.OUTLOOK.COM ([fe80::49b5:db43:82f9:faa2]) by SYZP282MB3169.AUSP282.PROD.OUTLOOK.COM ([fe80::49b5:db43:82f9:faa2%2]) with mapi id 15.20.4649.017; Sat, 30 Oct 2021 00:41:40 +0000
From: Geoff Huston <gih@apnic.net>
To: "Wessels, Duane" <dwessels=40verisign.com@dmarc.ietf.org>
CC: Francesca Palombini <francesca.palombini@ericsson.com>, "dnsop-chairs@ietf.org" <dnsop-chairs@ietf.org>, "dnsop@ietf.org" <dnsop@ietf.org>, Suzanne Woolf <suzworldwide@gmail.com>, The IESG <iesg@ietf.org>, "draft-ietf-dnsop-dns-tcp-requirements@ietf.org" <draft-ietf-dnsop-dns-tcp-requirements@ietf.org>, "mahoney@nostrum.com" <mahoney@nostrum.com>
Thread-Topic: [DNSOP] Francesca Palombini's No Objection on draft-ietf-dnsop-dns-tcp-requirements-13: (with COMMENT)
Thread-Index: AQHXy+A+G3W/wbg0uk6pQk4A3Ipj1qvqoogAgAATgwA=
Date: Sat, 30 Oct 2021 00:41:39 +0000
Message-ID: <EFA3BC69-DB72-4A4B-880D-00D2EF878770@apnic.net>
References: <163541418459.20444.11947817102518889679@ietfa.amsl.com> <564C5157-AD80-4E06-8319-56CB8AE218BC@verisign.com>
In-Reply-To: <564C5157-AD80-4E06-8319-56CB8AE218BC@verisign.com>
Accept-Language: en-AU, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3693.20.0.1.32)
authentication-results: dmarc.ietf.org; dkim=none (message not signed) header.d=none;dmarc.ietf.org; dmarc=none action=none header.from=apnic.net;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b531651a-7bf5-4d2d-678b-08d99b3e09a3
x-ms-traffictypediagnostic: SY6P282MB3374:
x-microsoft-antispam-prvs: <SY6P282MB3374BA331B3715A8286DDD52B8889@SY6P282MB3374.AUSP282.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: AZM26uvdBoQVwY7zYGmcOWr0PJAOYaUW++Fp9yuQXNEjjNWwThAmvQIRs2zlIM8xKVpb2GpyBW4ZodeXIQziXVLhDFv+yzm5ttifXGYPahRggtH3GKRwhO33LhbrUaMTNALrqQNM5TbqUl06QI/LEC61wiZPyIzZItB0e3UYwVHfL+QQMbMOzC+qTnwvJoKc+6ZdKILfg2ylzVelSSm2x9NofEkTipqOl6PZiUcUiLjJKDJYpY/Ix5ZNq5s4R2CwTeNIThcfBhO21rtibpjpJsCECeRtkNqAnzJZMxQ6+yQjkKnWHZA4wXcTCGjKpgY2WAeZ5fC5DXaUFjiXGBHdif5Kyb1YQhYZ++8ZfncQbb/tYWzRQ0ib/Rx/9pD9vjWVjO73w0cPOyGofxArizVSzWJlaL0n9e1x1t6jgkiD/2LRCDJC+iFX5tD9S2FgOxewU3/sXcR9/YvldZCKzyQqckkgT+n5EQLkrI+WGQoNBWdhnmzOWjot4l0uNpVhE0VPLq877ourZ9hjc325pomWTR4IF+uIejIL0HhDGRVm9wxZ53fyKx/24kf39MsxSfRUBN2dDkh6yCp0Mw/8LDZsRWAUxH6zp8Hd4uReqtbuaSlNYt6pqCfk2K6Mhib9zSVrOEp3JYGYWzL4bT6rrFe6dUSOqJt8dDgFjM17+thsp4UVT1vpVS7ud07X9ddhR6i5lb/9S1WCGUApOleLi8HbJODg1OSuhYH6jxQW3MV3MhQ18fcRx/y4tnTmVBmXwyb/rDJjxPIUWUdxyHVMSIjZd6QWebj2kN6j3OIWI7gthzxkhk4loz24wMom5U9WIUklhJUILQb8CpA1t/fjNNJY+Zd+9gKqQj5e4ouSa0Qj43U=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SYZP282MB3169.AUSP282.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(4636009)(346002)(366004)(136003)(39830400003)(396003)(376002)(6486002)(316002)(2906002)(36756003)(8676002)(54906003)(66556008)(4326008)(76116006)(64756008)(66476007)(66446008)(86362001)(6512007)(66946007)(8936002)(71200400001)(6506007)(508600001)(966005)(33656002)(38070700005)(2616005)(5660300002)(53546011)(122000001)(38100700002)(186003)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <2B9C2E813A6889449B86F11CA9D09DCD@AUSP282.PROD.OUTLOOK.COM>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: apnic.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SYZP282MB3169.AUSP282.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: b531651a-7bf5-4d2d-678b-08d99b3e09a3
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Oct 2021 00:41:39.9964 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 127d8d0d-7ccf-473d-ab09-6e44ad752ded
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: sxOXJnDMpyF9l+iuhNtUdS/eTJuXW9muTSxpU2DOWQfHml1pXNBYM9qcPeh5UMl6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SY6P282MB3374
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/E5BFG_S0dk-8U46SBnxRyRqhA4w>
Subject: Re: [DNSOP] Francesca Palombini's No Objection on draft-ietf-dnsop-dns-tcp-requirements-13: (with COMMENT)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 30 Oct 2021 00:42:19 -0000


> On 30 Oct 2021, at 10:31 am, Wessels, Duane <dwessels=40verisign.com@dmarc.ietf.org> wrote:
> 
> Francesca, thank you for the review.
> 
>> On Oct 28, 2021, at 2:43 AM, Francesca Palombini via Datatracker <noreply@ietf.org> wrote:
>> 
>> 
>> 
>> I only have one very minor comments, to take or leave as you please:
>> 
>>  headers are 40 bytes (versus 20 without options in IPv4).  Second, it
>>  seems as though some people have misinterpreted IPv6's required
>>  minimum MTU of 1280 as a required maximum.  Third, fragmentation in
>> 
>> FP: The "some people" is quite cryptic, in my opinion. What people? Does this
>> come from analyzing implementations? Then it would probably be good to state so
>> instead.
> 
> Perhaps this is better?
> 
>   Second, it is common
>   for IPv6-connected hosts to use the minimum MTU of 1280 bytes <xref target="PMTU”/>
> 
> Where the PMTU reference is "Exploring Usable Path MTU in the Internet” (https://doi.org/10.23919/TMA.2018.8506538)
> 

Hi Duane,

I don't think the use of the term “common” with reference to an MTU of 1280 is all that much better!

The Path MTU paper does not appear to be a terribly good measurement reference in the context of the DNS. The paper cites what they term "IPv6 webservers" for their conclusions. Our observations for DNS recursive resolvers performed in late 2020 show only 30% of those recursive resolvers that were visible to our experiment presenting an MSS of 1220 octets, while 55% presented  an MSS of 1440 octets. (https://www.potaroo.net/ispcol/2020-11/xldns-fig11.png) The measurement was written up at https://www.potaroo.net/ispcol/2020-11/xldns.html

I would suggest “a visible proportion of DNS recursive resolvers present a TCP MSS value that is conistent with a local MTU setting of 1280” or even “Approximately one third of DNS recursive resolvers” and cite the APNIC measurement paper to justify the quantified proportion.

kind regards,

   Geoff