IETF Logo Mail Archive

Re: [DNSOP] I-D Action: draft-ietf-dnsop-glue-is-not-optional-02.txt

Mark Andrews <marka@isc.org> Wed, 28 July 2021 00:58 UTC

Return-Path: <marka@isc.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0D4063A14B6 for <dnsop@ietfa.amsl.com>; Tue, 27 Jul 2021 17:58:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=isc.org header.b=pytBtBDF; dkim=pass (1024-bit key) header.d=isc.org header.b=kpnVFt7K
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R7AIp2d6AP0U for <dnsop@ietfa.amsl.com>; Tue, 27 Jul 2021 17:58:39 -0700 (PDT)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 12D713A1439 for <dnsop@ietf.org>; Tue, 27 Jul 2021 17:58:39 -0700 (PDT)
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx.pao1.isc.org (Postfix) with ESMTPS id 69A5C3AB01D; Wed, 28 Jul 2021 00:58:37 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=isc.org; s=ostpay; t=1627433917; bh=P73Ks+2DAsxnrKQKI/4cCPJa9m2FWdPjJpD4yI47xgE=; h=Subject:From:In-Reply-To:Date:Cc:References:To; b=pytBtBDFzgwj9smbJlXb9852YSjPStvrqhIs84vucPjiFnh2UxBo3+E+6CxUUJP0H sTRA+7YzKPAHaNRzN9at4vXjz9Q8GD/1hxYpvH6mnLQyqEcDPA4W1ItPUhHxVTfh1L S/xsxCnJu6kHM9V2WXCb4Q1frqm2NjFmBVzOsOaY=
Received: from zmx1.isc.org (localhost.localdomain [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTPS id 1D89E16003D; Wed, 28 Jul 2021 00:58:37 +0000 (UTC)
Received: from localhost (localhost.localdomain [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id A94EB16003E; Wed, 28 Jul 2021 00:58:36 +0000 (UTC)
DKIM-Filter: OpenDKIM Filter v2.9.2 zmx1.isc.org A94EB16003E
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=isc.org; s=05DFB016-56A2-11EB-AEC0-15368D323330; t=1627433916; bh=vor1NeCJ/N6AdiGvPcGyhzwMIMF+YD/82g4Br3jUEzs=; h=Content-Type:Mime-Version:Subject:From:Date: Content-Transfer-Encoding:Message-Id:To; b=kpnVFt7KFtaNAXYUXBi3Nn8yJkOu14n0JjMUHHPHZDllLcBjiSQP9vYUOeDXm1PWx J2i9LHHVjt22PFOrFvOq58ysBwXTPDk2vFriEz2I8RXiaj7rL4nlsgW3IXQ3I2pOFt XgJzrMtdiNWl1Ds8Mgj9kopz7IUTnb2U5wFbtOx8=
Received: from zmx1.isc.org ([127.0.0.1]) by localhost (zmx1.isc.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id A2yqgX2cm3fx; Wed, 28 Jul 2021 00:58:36 +0000 (UTC)
Received: from smtpclient.apple (n49-177-247-47.bla4.nsw.optusnet.com.au [49.177.247.47]) by zmx1.isc.org (Postfix) with ESMTPSA id 66D5F16003D; Wed, 28 Jul 2021 00:58:35 +0000 (UTC)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.100.0.2.22\))
From: Mark Andrews <marka@isc.org>
In-Reply-To: <3ecabc6b-9e7e-a936-5ac7-dc7e4ce08fc8@taugh.com>
Date: Wed, 28 Jul 2021 10:58:32 +1000
Cc: Shumon Huque <shuque@gmail.com>, "dnsop@ietf.org WG" <dnsop@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <17FF0621-02AB-4E1A-B671-51A1232CFE27@isc.org>
References: <CA+9_gVstayRZufjKbi3TgKxnsg-Jt52y1Z3Znnmocyf_iSdoiQ@mail.gmail.com> <20210727201504.2939B25365A4@ary.qy> <CAHPuVdX4jwn=U9ONkuGd_LU0cgcGVyNpy7=aHnjqtX8MHTj2tg@mail.gmail.com> <4897dd4-7199-c32b-53d0-67a357b2f1e1@taugh.com> <CAHPuVdV82N5m3z2BMuh3GxH_0e+PSUjG8ty4-7b8RGQr8MzMag@mail.gmail.com> <3ecabc6b-9e7e-a936-5ac7-dc7e4ce08fc8@taugh.com>
To: John R Levine <johnl@taugh.com>
X-Mailer: Apple Mail (2.3654.100.0.2.22)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/MlvNpTc0hypZOUSlhibakK33Thc>
Subject: Re: [DNSOP] I-D Action: draft-ietf-dnsop-glue-is-not-optional-02.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Jul 2021 00:58:54 -0000

John,
	take the following delegations in the parent zone example.

	foo.example NS ns.bar.example
	ns.foo.example AAAA 2001:0DB8:0000:000b::1

	bar.example NS ns.foo.example
	ns.bar.example AAAA 2001:0DB8:0000:000b::2

If you don’t return sibling glue a query for b.foo.example returns
a referral of


	foo.example NS ns.bar.example

and a query for ns.bar.example returns a referral of 

	bar.example NS ns.foo.example

and the subsequent query for ns.foo.example  returns a referral of

	foo.example NS ns.bar.example

Returning sibling glue is not an optimisation.

> On 28 Jul 2021, at 10:47, John R Levine <johnl@taugh.com> wrote:
> 
>>>> Just to make sure we're talking about the same thing, the definition of
>>>> sibling glue is glue from another zone delegated from the same parent.
>>> 
>>> That's not what the example in 4.1 of the draft shows.  It has foo.test
>>> depending on ns1.bar.test, so the server adds the A record for
>>> ns1.bar.test.
>> 
>> It does actually.
> 
> Oh, sorry, I misread your message.
> 
>> "ns1.bar.test/A" is glue for "bar.test" (and sibling glue for "foo.test" in that
>> example). It is returned by the servers for "test" in a referral for "foo.test".
>> 
>> Open to suggestions for more clarifying language.
> 
> Unless I'm misunderstanding something, in the absence of sibling glue, the resolver would make a second request for ns1.bar.test, same as if it were ns1.bar.otherdomain, and it would get back a referral with the glue.  It is just a performance tweak and I don't see why we should describe it as more than that.
> 
> Regards,
> John Levine, johnl@taugh.com, Taughannock Networks, Trumansburg NY
> Please consider the environment before reading this e-mail. https://jl.ly
> 
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop

-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742              INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email