IETF Logo Mail Archive

Re: [DNSOP] opportunistic refresh and Happy Eyeballs

Mukund Sivaraman <muks@isc.org> Wed, 16 August 2017 01:05 UTC

Return-Path: <muks@isc.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 391E41321F0 for <dnsop@ietfa.amsl.com>; Tue, 15 Aug 2017 18:05:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.235
X-Spam-Level:
X-Spam-Status: No, score=-1.235 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_SOFTFAIL=0.665] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zluxMHsPsMao for <dnsop@ietfa.amsl.com>; Tue, 15 Aug 2017 18:05:21 -0700 (PDT)
Received: from mail.banu.com (mail.banu.com [46.4.129.225]) by ietfa.amsl.com (Postfix) with ESMTP id 019EE132076 for <dnsop@ietf.org>; Tue, 15 Aug 2017 18:05:21 -0700 (PDT)
Received: from jurassic (unknown [115.117.171.76]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mail.banu.com (Postfix) with ESMTPSA id DA87F56A003F; Wed, 16 Aug 2017 01:05:17 +0000 (GMT)
Date: Wed, 16 Aug 2017 06:35:14 +0530
From: Mukund Sivaraman <muks@isc.org>
To: Warren Kumari <warren@kumari.net>
Cc: Tony Finch <dot@dotat.at>, dnsop <dnsop@ietf.org>, Jared Mauch <jared@puck.nether.net>, Paul Vixie <paul@redbarn.org>, Mikael Abrahamsson <swmike@swm.pp.se>
Message-ID: <20170816010514.GA32767@jurassic>
References: <alpine.DEB.2.20.1708150911470.3655@uplift.swm.pp.se> <9EED4C56-8B35-4013-861D-0B86F66483E0@puck.nether.net> <59932F2F.9030504@redbarn.org> <294FA766-3C87-4C35-AF0F-E886A7ADEDE5@dotat.at> <CAHw9_iLNwcsxbw37Zr827MUDtrU5th2XYe=rEy4BTs5C8b+NMA@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CAHw9_iLNwcsxbw37Zr827MUDtrU5th2XYe=rEy4BTs5C8b+NMA@mail.gmail.com>
User-Agent: Mutt/1.8.3 (2017-05-23)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/M36si8nnOLcNbYBx2x3gICHFa9Q>
Subject: Re: [DNSOP] opportunistic refresh and Happy Eyeballs
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Aug 2017 01:05:22 -0000

Hi Warren

On Tue, Aug 15, 2017 at 08:33:30PM -0400, Warren Kumari wrote:
> multiple-responses allows servers to opportunistically include this
> info. We still need to do some analysis to figure out just how much of
> an improvement this generates, but it doesn't require any additional
> requests. If the server (auth or recursive) knows that a client
> (recursive or stub) might be able to use this into, it just shovels it
> in. This leads to larger responses, but I think that we lost the
> "small packets" battle long ago -- attackers who want to find big
> responses for reflections can easily do so...

There's a cost attached to how much information is in a reply
message. Lookup of data, rendering it to a DNS message, RR ordering,
name compression, etc. all consume CPU and the query performance of a
service is affected by how many RRsets it includes in a reply. This is
significant and should not be ignored when thinking about these
extensions.

I favour the draft where the client requests for things it needs
(including for TLSA as somebody pointed out) than the server adding what
it thinks a client may need (a lot of which may end up being thrown away
by the client).

I don't oppose bundling A/AAAA though per this thread.

		Mukund

v2.23.0 | Report a Bug | By Email