Re: [DNSOP] ANAME precedence [issue #58]
Anthony Eden <anthony.eden@dnsimple.com> Thu, 25 April 2019 18:41 UTC
Return-Path: <anthony.eden@dnsimple.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6363A1200F9 for <dnsop@ietfa.amsl.com>; Thu, 25 Apr 2019 11:41:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=dnsimple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oWrlAYDsLuge for <dnsop@ietfa.amsl.com>; Thu, 25 Apr 2019 11:41:29 -0700 (PDT)
Received: from mail-wr1-x431.google.com (mail-wr1-x431.google.com [IPv6:2a00:1450:4864:20::431]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DA6F51200EA for <dnsop@ietf.org>; Thu, 25 Apr 2019 11:41:28 -0700 (PDT)
Received: by mail-wr1-x431.google.com with SMTP id s18so835000wrp.0 for <dnsop@ietf.org>; Thu, 25 Apr 2019 11:41:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dnsimple.com; s=mail; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=nX373zoD1KjM+SUCqOJfZdeHhCKq6/P6yRRtdPw2zSE=; b=dcMRGTQaurpyFeFIAaJQ+7l1NRS3ntfXWqtVnvqEpsv78iHG1BXFG1ds35gp1KaHvy Ju9i7ZOW6XezFL5zI5rFu/8A74QKfe+PWd2M6rqM6p9SkVjj49iSttMCA0SZcMN6/Qly fmpoND/R+a3GMpPfv4VLUjjdP6IQERtdmPskc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=nX373zoD1KjM+SUCqOJfZdeHhCKq6/P6yRRtdPw2zSE=; b=MmxMdBBPnEncIRqf79sC43D0o3McjiiS5ZA9IC/UPUNSMltExHMK7F5txw6756shgx kpigS3siDgVEyEh5W+oLXXWZ3NwlA7SSnIqqQvHHoo7EFZgKOuWqy1OkktnoSHuRuG4K byyG2VMS9b4Ws8ShiLjorINkKdcGyqaFU+97KBMDfgqhklcOtiVrpw5jjIjuTAjFI67m 6EZmibK5Y46e/ut/Qn/fiFiml/D77Ub9FCNhm4LwwilWg0zhArDFn1k5oHexLbFigjJ6 tHOuiQot3pmEe+1aVr2xQRFlRUs1R1LbR3ev1uqjVYGUL2oBBEL6CpSv1FaCT925VHOo AhgA==
X-Gm-Message-State: APjAAAU5cwUd0B0nBBrTvo0PF6h9J7gbd3274Cy3Z3nBuNkzpAEXc7QJ dTPA7dtNv2q4MJTnkUiDO3v/Zu8TXcV6tAx8/XU7yg==
X-Google-Smtp-Source: APXvYqzBpDvkHAyLcEHnS1zFo1P33KSii0TK8vZu15+GeO1yYL46axw5nkQ5huz/VQ9kHut5tSlVfMbYtM6FHgP8BVQ=
X-Received: by 2002:a05:6000:110a:: with SMTP id z10mr10983279wrw.86.1556217687372; Thu, 25 Apr 2019 11:41:27 -0700 (PDT)
MIME-Version: 1.0
References: <87d7d127-20cc-8044-277a-d31b1a546219@pletterpet.nl>
In-Reply-To: <87d7d127-20cc-8044-277a-d31b1a546219@pletterpet.nl>
From: Anthony Eden <anthony.eden@dnsimple.com>
Date: Thu, 25 Apr 2019 14:41:16 -0400
Message-ID: <CAOZSDgBAZbzfTeT7o4a3czBS6KQUMt-X=x9ZZuDpsZDNr5RO1Q@mail.gmail.com>
To: Matthijs Mekking <matthijs@pletterpet.nl>
Cc: "dnsop@ietf.org" <dnsop@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000007310ce05875f2aee"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/NDyruIJCTXtWdeAg99elhONDfJ8>
Subject: Re: [DNSOP] ANAME precedence [issue #58]
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Apr 2019 18:41:32 -0000
I've commented on the GH issue directly. -Anthony P.S. To everyone involved, thank you for continuing your hard work on this specification. On Wed, Apr 24, 2019 at 5:45 AM Matthijs Mekking <matthijs@pletterpet.nl> wrote: > Hi, > > I would like to start separate threads on the remaining issues of the > ANAME draft. One issue that remains to be solved is whether having an A > or AAAA record next to the ANAME should take precedence or not. > > Draft: https://datatracker.ietf.org/doc/draft-ietf-dnsop-aname/ > Issue: https://github.com/each/draft-aname/issues/58 > > This was discussed face to face during IETF 101 and at that time the > conclusion was that the correct behavior is that ANAME takes precedence: > If you implement ANAME, the target lookup for A and AAAA will always be > made. If the lookup succeeds, the sibling address records are replaced > with the target address records. If the lookup fails, the sibling > address records remain in the zone. > > Jan Včelák mentioned that at least NS1 uses a different order of > priority: If an sibling address record exists next to the ANAME it takes > precedence and no target lookup is done for that address record type. > > In order to provide identical behavior between providers (make ANAME > work in the multi-provider model) we should agree on the priority order. > > To me, it makes much more sense to use the sibling address record as a > default, and the ANAME target lookup can replace the sibling address > records. The target address records will improve the answer. > > If you place an override, adding an address record next to ANAME, you > can achieve the same thing by not placing the ANAME record in your zone > at all. > > But when the sibling address records take precedence, it has the > property that you can set up ANAME for only one address type, for > example ANAME for A but not for AAAA. I would like to know if there is a > good use case for having this property. > > I would like to hear an opinion from the working group (preferably from > ANAME providers). Specifically do you have a preference of priority > order? Do you think having the "set up ANAME for one address type" > property is worth having? > > > Thanks, > > Matthijs > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop > -- DNSimple.com http://dnsimple.com/ Twitter: @dnsimple
- [DNSOP] ANAME precedence [issue #58] Matthijs Mekking
- Re: [DNSOP] ANAME precedence [issue #58] 神明達哉
- Re: [DNSOP] ANAME precedence [issue #58] Anthony Eden
- Re: [DNSOP] ANAME precedence [issue #58] Matthijs Mekking
- Re: [DNSOP] ANAME precedence [issue #58] 神明達哉
- Re: [DNSOP] ANAME precedence [issue #58] Jan Včelák
- Re: [DNSOP] ANAME precedence [issue #58] Matthijs Mekking