[DNSOP] updated draft-wouters-edns-chain-query and draft-wouters-edns-tcp-keepalive

Paul Wouters <paul@nohats.ca> Fri, 14 February 2014 22:04 UTC

Return-Path: <paul@nohats.ca>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2782F1A00B0; Fri, 14 Feb 2014 14:04:22 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.548
X-Spam-Level:
X-Spam-Status: No, score=-2.548 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.548] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FBopjzHqelyx; Fri, 14 Feb 2014 14:04:16 -0800 (PST)
Received: from bofh.nohats.ca (bofh.nohats.ca [76.10.157.69]) by ietfa.amsl.com (Postfix) with ESMTP id ADA231A00C6; Fri, 14 Feb 2014 14:04:07 -0800 (PST)
Received: from bofh.nohats.ca (bofh.nohats.ca [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id 112EB800AA; Fri, 14 Feb 2014 17:04:06 -0500 (EST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nohats.ca; s=default; t=1392415446; bh=JuzXP6NxPTww83ldK7QDSX+LF/HTlY1p8P1TSwfTX6A=; h=Date:From:To:cc:Subject; b=t+Qu/BFrtFE2ng7IZOn1xCkOvJIKzhcjqO+s4ThJ2fGD/jlEQkt98IDNDerUrrnJ+ n7uOywd6M8JYDILv/pXzR1AlnRJApwj1ldyOcEm5YBm1ksSJJwhPNaUalAtQhbo+Oe qR0kUDYYGh3vaajBTgIp/Rh9uVT/0wLVLfjvkd9w=
Received: from localhost (paul@localhost) by bofh.nohats.ca (8.14.7/8.14.7/Submit) with ESMTP id s1EM45sb016374; Fri, 14 Feb 2014 17:04:05 -0500
X-Authentication-Warning: bofh.nohats.ca: paul owned process doing -bs
Date: Fri, 14 Feb 2014 17:04:05 -0500
From: Paul Wouters <paul@nohats.ca>
To: DNSEXT Group Working <dnsext@ietf.org>
Message-ID: <alpine.LFD.2.10.1402141655560.9049@bofh.nohats.ca>
User-Agent: Alpine 2.10 (LFD 1266 2009-07-14)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; format="flowed"; charset="US-ASCII"
Archived-At: http://mailarchive.ietf.org/arch/msg/dnsop/GLiXj9MC8DWxikRnDOpUjhIAjXA
Cc: dnsop <dnsop@ietf.org>
Subject: [DNSOP] updated draft-wouters-edns-chain-query and draft-wouters-edns-tcp-keepalive
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Feb 2014 22:04:22 -0000

Due to lack of a WG list, sent to dnsop and dnsext

I've updated two drafts:

https://datatracker.ietf.org/doc/draft-wouters-edns-tcp-keepalive/

By popular request, the TIMEOUT value can now be used by both clients
and servers to manage their resources and expectations.

Various people requested we should not be too strict on anycast servers,
and we no longer require them to only use a TIMEOUT of 0.

Addressed comments from Ray, Mark, Tatuya, and others, and findings of
me as a result of testing using a patched dig against common DNS servers
capability to keep TCP sessions open already.

Reference the problem of 5966 recommending closing idle TCP sessions in
seconds.

https://datatracker.ietf.org/doc/draft-wouters-edns-chain-query/
(formerly draft-wouters-edns-tcp-chain-query)

Most importantly, it no longer requires TCP, but will allow any "source
ip validated" transport, and references draft-eastlake-cookies for UDP.

Addresses Marc's comment regarding DNS requests > 512 bytes

Clarifies why we want NS records (in case we switch from forwarder to
standalone recursive)

Update on justification why this is better than rapid-fire UDP.

Paul