Re: [DNSOP] Root reasons (aka "why") - HTTP vs SRV vs ANAME vs CNAME

[Måns Nilsson <mansaxel@besserwisser.org>]

Subject: Re: [DNSOP] Root reasons (aka "why") - HTTP vs SRV vs ANAME vs CNAME Date: Thu, Nov 08, 2018 at 06:30:41PM -0800 Quoting Paul Vixie (paul@redbarn.org)

> i am loath to create per-service record types. that's why SRV. if you really
> want every client of a service to query for something other than AAAA/A, can
> you try to fix what's wrong with SRV regarding wildcards, but avoid a new

In my sometimes half-working brain a SRV or URI record can be a wildcard. 

If we look at it this way: The user is going to (unless they are
led by a search engine) type a domain name of the form "trademark.TLD"
into their client. Today, the client does matching to actual domain
names by asking for trademark.tld A/AAAA and www.trademark.tld
A/AAAA. (2 queries, not counting the CDN CNAME chain) 

We, or more specifically, people asking for data, can elect to treat the
URI record for 'trademark.tld' node as the default (wildcard) record for
any node that does not exist within the same domain. The semantics "change"
would be "if we ask for _http._tcp.asdf.trademark.tld and get NXDOMAIN
we'll check if _http._tcp.trademark.tld URI exists and return that."

As mentioned above, browsers today do this, but for "www" and "".
And it is done entirely in the client. 

No DNS changes required. 

We can be more specific upwards in the tree by asking  that such cache
hits can't be reused beyond a delegation point (by looking for SOA) if
we so desire. This, as well, is done as a behavioural change in the
client. It can be accelerated by anticipating the next shorter query
in the resolver and send that answer in the additional data section
(as we do with SOA on NXdomain) but it is not strictly necessary.

-- 
Måns Nilsson     primary/secondary/besserwisser/machina
MN-1334-RIPE           SA0XLR            +46 705 989668
Pardon me, but do you know what it means to be TRULY ONE with your BOOTH!