Re: [DNSOP] Martin Stiemerling's No Objection on draft-ietf-dnsop-edns-tcp-keepalive-04: (with COMMENT)
Sara Dickinson <sara@sinodun.com> Wed, 06 January 2016 16:13 UTC
Return-Path: <sara@sinodun.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D81571B2C61; Wed, 6 Jan 2016 08:13:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 502xmBM_KB5q; Wed, 6 Jan 2016 08:13:19 -0800 (PST)
Received: from shcp01.hosting.zen.net.uk (shcp01.hosting.zen.net.uk [88.98.24.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E56921A87D2; Wed, 6 Jan 2016 08:13:18 -0800 (PST)
Received: from [62.232.251.194] (port=11596 helo=virgo.sinodun.com) by shcp01.hosting.zen.net.uk with esmtpsa (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.85) (envelope-from <sara@sinodun.com>) id 1aGqhy-000707-77; Wed, 06 Jan 2016 16:13:11 +0000
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 9.2 \(3112\))
From: Sara Dickinson <sara@sinodun.com>
In-Reply-To: <20160105222932.5018.56721.idtracker@ietfa.amsl.com>
Date: Wed, 06 Jan 2016 16:13:13 +0000
Content-Transfer-Encoding: quoted-printable
Message-Id: <F267ECD9-30D9-4101-BBEB-0407A39AD375@sinodun.com>
References: <20160105222932.5018.56721.idtracker@ietfa.amsl.com>
To: Martin Stiemerling <mls.ietf@gmail.com>
X-Mailer: Apple Mail (2.3112)
X-OutGoing-Spam-Status: No, score=-1.0
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - shcp01.hosting.zen.net.uk
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - sinodun.com
X-Get-Message-Sender-Via: shcp01.hosting.zen.net.uk: authenticated_id: sara+sinodun.com/only user confirmed/virtual account not confirmed
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/HWaE3GjoPWRb1p799HFsAP_DDqI>
Cc: tjw.ietf@gmail.com, draft-ietf-dnsop-edns-tcp-keepalive@ietf.org, dnsop@ietf.org, dnsop-chairs@ietf.org, The IESG <iesg@ietf.org>
Subject: Re: [DNSOP] Martin Stiemerling's No Objection on draft-ietf-dnsop-edns-tcp-keepalive-04: (with COMMENT)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Jan 2016 16:13:21 -0000
> On 5 Jan 2016, at 22:29, Martin Stiemerling <mls.ietf@gmail.com> wrote: > > > Two comments for your considerations: > > 1) Section 3.3.2 is talking about this "It is reasonable for this value > to change [...] or in consideration of intermediary behaviour (for > example TCP middleboxes or NATs)." > Can you please clarify how the DNS client or server is able to inspect > the behaviour of intermediated devices and adapt its behaviour > accordingly? This smells a bit like a half-baked idea which does not > belong into a standards track document. I've checked with the other authors and we are fine with removing the statement about intermediary behaviour. > > 2) Section 3.6. talks about using Multipath TCP. Please note that > Multipath TCP is still experimental and has known security issues, which > are dealt with right now. Further, I would recommend to move this to a > non-normative appendix, noting that this is a potential future way > forward, but that is has not yet been tested and deployed. This would > also honor that RFC 6824 is listed in the informative part of the > references. This was picked up in an earlier review and in the -05 version the last sentence was reworded to be more suitable for an experimental RFC reference: “It might be possible for anycast servers to avoid disruption due to topology changes by making use of TCP multipath [RFC6824] to anchor the server side of the TCP connection to an unambiguously-unicast address.” Does this address your concerns sufficiently? Regards Sara.
- [DNSOP] Martin Stiemerling's No Objection on draf… Martin Stiemerling
- Re: [DNSOP] Martin Stiemerling's No Objection on … Sara Dickinson
- Re: [DNSOP] Martin Stiemerling's No Objection on … Martin Stiemerling