IETF Logo Mail Archive

Re: [DNSOP] WGLC: "Considerations for the use of DNS Reverse Mapping"

Mark Andrews <Mark_Andrews@isc.org> Mon, 31 March 2008 20:56 UTC

Return-Path: <dnsop-bounces@ietf.org>
X-Original-To: dnsop-archive@lists.ietf.org
Delivered-To: ietfarch-dnsop-archive@core3.amsl.com
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 217F33A6A9F; Mon, 31 Mar 2008 13:56:24 -0700 (PDT)
X-Original-To: dnsop@core3.amsl.com
Delivered-To: dnsop@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2B7B43A6854 for <dnsop@core3.amsl.com>; Mon, 31 Mar 2008 13:56:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.21
X-Spam-Level:
X-Spam-Status: No, score=-2.21 tagged_above=-999 required=5 tests=[AWL=0.389, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5o1TZHw0LsYh for <dnsop@core3.amsl.com>; Mon, 31 Mar 2008 13:56:21 -0700 (PDT)
Received: from drugs.dv.isc.org (drugs.dv.isc.org [IPv6:2001:470:1f00:820:214:22ff:fed9:fbdc]) by core3.amsl.com (Postfix) with ESMTP id 3C8E33A6D1D for <dnsop@ietf.org>; Mon, 31 Mar 2008 13:55:34 -0700 (PDT)
Received: from drugs.dv.isc.org (localhost [127.0.0.1]) by drugs.dv.isc.org (8.14.2/8.14.1) with ESMTP id m2VKtQvt039221; Tue, 1 Apr 2008 06:55:27 +1000 (EST) (envelope-from marka@drugs.dv.isc.org)
Message-Id: <200803312055.m2VKtQvt039221@drugs.dv.isc.org>
To: bmanning@vacation.karoshi.com
From: Mark Andrews <Mark_Andrews@isc.org>
In-reply-to: Your message of "Mon, 31 Mar 2008 20:27:13 -0000." <20080331202713.GB32510@vacation.karoshi.com.>
Date: Tue, 01 Apr 2008 07:55:26 +1100
Cc: IETF DNSOP WG <dnsop@ietf.org>, Edward Lewis <Ed.Lewis@neustar.biz>, Peter Koch <pk@DENIC.DE>
Subject: Re: [DNSOP] WGLC: "Considerations for the use of DNS Reverse Mapping"
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/dnsop>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: dnsop-bounces@ietf.org
Errors-To: dnsop-bounces@ietf.org

> On Tue, Apr 01, 2008 at 06:34:38AM +1100, Mark Andrews wrote:
> > 
> > 	Multiple PTR records do not scale.
> 
> 	what does that mean Mark?
> 	
> 	why does "Multiple A records" scale and not others?
> 	is this a DNS protocol issue or an implementation artifact?

	Multiple PTR records scale worse than multiple A records.

	You get ~4000 A records in 64K.
	You get ~2000 AAAA records in 64K.

> > 	Today we have reverse lookups that fail because people
> > 	followed this path and exceeded the 64K DNS message size
> > 	of TCP.
> 
> 	and the same failure would be true for multiple instances
> 	of any RR type. 

	Yes.  It's just very very rare for there to be enough of
	the other types to cause a problem.

	It's not uncommon for there to be too many PTR records to
	cause a problem especially when you start advocating that
	each address records needs a corresponding PTR record.  The
	only reason we don't see more problems is that people have
	been saying that it is a waste of time to have multiple PTR
	records.

> > 	When people have a 100 thousand virtual domains on a 
> > 	box you just can't have PTR records for all of them.
> 
> 	and apparently you can't have A records for them either.
> 
> > 
> > 	Mark
> 
> 	so the actual spec limit is any mixture of RR types that
> 	will fit into a 64k DNS message on TCP.  Right?
> 
> --bill
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews@isc.org
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop

v2.23.0 | Report a Bug | By Email