IETF Logo Mail Archive

Re: [DNSOP] Robert Wilton's Discuss on draft-ietf-dnsop-avoid-fragmentation-16: (with DISCUSS)

"Rob Wilton (rwilton)" <rwilton@cisco.com> Wed, 13 March 2024 16:00 UTC

Return-Path: <rwilton@cisco.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E943AC14F5E8; Wed, 13 Mar 2024 09:00:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -11.895
X-Spam-Level:
X-Spam-Status: No, score=-11.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, T_SPF_HELO_PERMERROR=0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b="NVOTdd7R"; dkim=pass (1024-bit key) header.d=cisco.com header.b="UTlDoott"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cF1BPvqSgK7v; Wed, 13 Mar 2024 09:00:41 -0700 (PDT)
Received: from rcdn-iport-6.cisco.com (rcdn-iport-6.cisco.com [173.37.86.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 74408C14F694; Wed, 13 Mar 2024 09:00:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; i=@cisco.com; l=17688; q=dns/txt; s=iport; t=1710345641; x=1711555241; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=0UscgkNQi2BxtlWldAuVtPeKpUn0Z0WgphxpRVPgLBY=; b=NVOTdd7R6KfOdekTpbVE8Ny8aTuVvpXNYcBuspE5tK6IRwypPElSEfXI 5IQQcZfZLSIdgmjc+OIy0Hd20n+6Iolv0cpUn4hml+MAhfX8MirXgXInw TZeq6Fglt8pUTg3hWWZxlvMAYpI2adEfCKteYkjPqQxEjtbqbxBX+PIrl s=;
X-CSE-ConnectionGUID: aUvcXT16S4mHH/fVciXoBw==
X-CSE-MsgGUID: hjdd9squRWCcQoStEAAUSQ==
X-IPAS-Result: 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
IronPort-PHdr: A9a23:24riDxGtytBz34NYeK6D+51GfukY04WdBeZdwoAsh7QLdbys4NG/e kfe/v5qylTOWNaT5/FFjr/Ourv7ESwb4JmHuWwfapEESRIfiMsXkgBhSM6IAEH2NrjrOgQxH d9JUxlu+HToeVNNFpPGbkbJ6ma38SZUHxz+MQRvIeGgAJHTi9iw0ci5+obYZENDgz/uKb93J Q+9+B3YrdJewZM3MKszxxDV6ndJYLFQwmVlZBqfyh39/cy3upVk9kxt
IronPort-Data: A9a23:S3x8T6C47dyChxVW//zjw5YqxClBgxIJ4kV8jS/XYbTApDp2gWBRx jAdCDvTPaqDYzT9Kt92PY7i9kNQuMWGm4cxOVdlrnsFo1CmBibm6XV1Cm+qYkt+++WaFBoPA /02M4SGdIZsCCaE+n9BC5C5xVFkz6aEW7HgP+DNPyF1VGdMRTwo4f5Zs7ZRbrVA357hXGthh fuo+5eDYAT8gGYuWo4pw/vrRC1H7ayaVAww5jTSVdgT1HfCmn8cCo4oJK3ZBxMUlaENQ4ZW7 86apF2I1juxEyUFU7tJoZ6nGqE+eYM+CCDV4pZgtwdOtTAZzsA6+v5T2PPx8i67gR3R9zx64 I0lWZBd1W7FM4WU8NnxXSW0HAl3ALNNyIOef0PjtOyziEP4eHrcxN9xWRRe0Y0woo6bAElU/ vAebTsKdB3G3rvwy7OgQe4qjcMmRCXpFNpA4Tc7kneIVrB/Hc+rr6bivbe02B8qmcFKAfHYT 8EYcjFoKh/HZnWjP39NUMhmxrf22iGXnztwqFCZqfss+nXp8yd66b/WLPf8U+GxfJAA9qqfj jmbpzuiWE5y2Mak4TaD6XW0w+TPlCLhQ6oTGaG2sPlwjzW7x2EIBzUXWEe15/6jhSaWV9REL FQ8+ycyo+417kPDZtXnVhOk5X+JohBZV9xLFPV/4R+Ky6aR7RyQCW0JSCJIdN0hsuc3SCAkk FiTkLvU6SdHqraZTzeW8a2Z6GrrfyMUNmQFIyQDSGPp/uUPvqk6swzEfuo6TpXpi/3VXj/Oy DG6qwIh0uB7YdEw6423+lXOgjSJr5fPTxIo6gi/Yo5Dxl0gDGJCT9LygWU3/cp9wJClok5tV UXoduCE5+wISJqKjiHIGbxLF7Cy7PHDOzrZ6bKOI3XD32ryk5JAVdkMiN2bGKuPGp1fEdMOS BSN0T69HLcJYBOXgVZfOupd8fgCw6n6DsjCXfvJdNdIaZUZXFbYpXk0Ox7KgDu3zRJEfUQD1 XGzLJbE4ZEyVPQP8dZKb7l1PUIDn3lhlT2JGfgXMTz4gOr2iIGppUctawbWMbtjs8toUS3e8 s1UMIOR2g5DXejlKijR+sh7ELz5BSZTOHwCkOQOLrTrClM/QAkJUqaNqZt/INYNt/oOyY/1E oSVBxUwJKzX3yOXcG1nqxlLNdvSYHqIhShiZXRxZQn1hyNLjETGxP53SqbbtIIPrYRL5fV1V PICPc6HB5xypv7volzxsbGVQFReSSmW
IronPort-HdrOrdr: A9a23:GTu0tK3W70qFadzbgEAIWgqjBf1xeYIsimQD101hICG9Lfbo9P xGzc566farslcssSkb6KG90cm7LU819fZOkPAs1MSZLXnbUQqTXc5fBO7Zsl/d8kLFh5NgPM tbAs9D4ZjLfCZHZKXBkUeF+rQbsaW6GcmT7I+0oQYJPGVXguNbnnhE422gYzVLrXx9dOAE/e 2nl7F6TlSbCBIqR/X+LEMoG8LEoNrGno/nZxkpOz4LgTPlsRqYrJTBP1y9xBkxbxNjqI1OzY HCqWPEz5Tml8v+5g7X1mfV4ZgTssDm0MF/CMuFjdVQAinwiy6zDb4RG4GqjXQQmqWC+VwqmN 7Dr1MLJMJo8U7ceWmzvF/ExxTg6jAz8HXvoGXowkcL4PaJBg7SOfAxwb6xQSGprHbIe+sMlp 6j6ljp8qa/yymwxRgVqeK4Dy2C3XDE0kbK2dRj/UC3F7FuKYO4aeckjRlo+FBqJlOg1Kk3VO ZpF83S//BQbBeTaG3YpHBmxJi2Um00BQrueDlJhiW56UkfoJlC9TpS+OUP2nMbsJ4tQZhN4O rJdqxuibFVV8cTKaZwHv0IT8e7AnHEBUukChPfHX33UKUcf37doZ/+57s4oOmsZZwT1ZM33J DMSklRu2I+c1/nTceOwJpI+BbQR3jVZ0Wh9uhOo5xi/rHsTrviNiOODFgojsu7uv0aRtbWXv 6iUagmSsML7VGeb7qh8zeOLKW6c0NuJfH9kuxLL26zng==
X-Talos-CUID: 9a23:A7NGB2sw7bRcD/lj/MPamTbT6IssT2PW/EuJfXTkDEZJD7OrQl6g/4l7xp8=
X-Talos-MUID: 9a23:5fc6gQkTHHey7OI3+2VvdnpiNstksr+3FXoyup4/vPKYGAVZBgyk2WE=
X-IronPort-Anti-Spam-Filtered: true
Received: from rcdn-core-11.cisco.com ([173.37.93.147]) by rcdn-iport-6.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 13 Mar 2024 16:00:40 +0000
Received: from rcdn-opgw-5.cisco.com (rcdn-opgw-5.cisco.com [72.163.7.169]) by rcdn-core-11.cisco.com (8.15.2/8.15.2) with ESMTPS id 42DG0elI011398 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Wed, 13 Mar 2024 16:00:40 GMT
X-CSE-ConnectionGUID: vyaUgj9kSg6B3DkMVjfc7A==
X-CSE-MsgGUID: 1sdfN8EIQiGiUb0wT00FYg==
Authentication-Results: rcdn-opgw-5.cisco.com; dkim=pass (signature verified) header.i=@cisco.com; spf=Pass smtp.mailfrom=rwilton@cisco.com; dmarc=pass (p=reject dis=none) d=cisco.com
X-IronPort-AV: E=Sophos;i="6.07,122,1708387200"; d="scan'208,217";a="5869800"
Received: from mail-dm6nam11lp2169.outbound.protection.outlook.com (HELO NAM11-DM6-obe.outbound.protection.outlook.com) ([104.47.57.169]) by rcdn-opgw-5.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 13 Mar 2024 16:00:39 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=EPoKB8uMIR1DhzbsveQ5aHBkxeUgIN40C5gIUtKVD80myZuzOQdc3xvWj9X42krLhOaktXkRm5AfAXCg8HPgwWz2B7SQngFZ9WUQ+FSiX175yjo+ZIgErOeE36szxAoOlArwOz/JvfGhxPRafHiCng8KcvHUZ+yVw7xWj6qPdEYZyvxtV+mAfzdwo2gZzVgCVlyKol9J5bI6/GCSY+sz2JjRTWym5Yvfs/+ANKvUcBtzQQbAV6796jdamwvsd2LsgounQ1Q2N2/Y8T6W2rdzls85fJUqgP7/xJFXAYJ6m7oWLQVJpCmoTw3qgYNcnmG8QnTshJ2VF52rc43imjjfug==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=0UscgkNQi2BxtlWldAuVtPeKpUn0Z0WgphxpRVPgLBY=; b=VBjj2o26FQU6wfTI9g24XtfMjkfemnj/iO8qZuVGn/vssO/3Qz9C+ohx0Ni97/RP2HhnWe1Vdx1cAuoFERa/5W8YCLlf9wHl1BATpSgktBSzGWo5BQPslwtsyAVkZKUT3x6aHMNilXCY6wAtt8cbLl9uK+x14JmdUbw3AV3Q2NiYa61xeh9Oh8vEN3r1wyqsiRkXsWJP/wC3HasHTBJhA4kpJ0kechKwb2ObYNU32Gi+/IGRSo6UCpKSZlh1KhmqXeJKZlvJTl3mfZuSbGqLkygj+VAR+pGCRftENXycMfZYjDg+NREXQyY72u1M4AgSQqgFBmDu8IKsWsR/Ay9xzw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0UscgkNQi2BxtlWldAuVtPeKpUn0Z0WgphxpRVPgLBY=; b=UTlDoottYBrNlnvOASDstLa73XooP0AaYlzakl1QJNrcjR0PqPp8rZ0DJQe4W0gciCp5sUz4PwhGlfbMKuXj7SnlzL8ighJnatXSgxeEMlLtxxjL2+0tUNOhvPpfPtnwrdnzQHNKNBLcWPlH2EkE+6NJKnvtBxUf7+pUQt47qPE=
Received: from LV8PR11MB8536.namprd11.prod.outlook.com (2603:10b6:408:1ec::19) by SA2PR11MB5193.namprd11.prod.outlook.com (2603:10b6:806:fa::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7386.20; Wed, 13 Mar 2024 16:00:37 +0000
Received: from LV8PR11MB8536.namprd11.prod.outlook.com ([fe80::dae8:c4e2:9d09:1d9]) by LV8PR11MB8536.namprd11.prod.outlook.com ([fe80::dae8:c4e2:9d09:1d9%7]) with mapi id 15.20.7386.017; Wed, 13 Mar 2024 16:00:37 +0000
From: "Rob Wilton (rwilton)" <rwilton@cisco.com>
To: Paul Vixie <paul@redbarn.org>, Warren Kumari <warren@kumari.net>, "Murray S. Kucherawy" <superuser@gmail.com>
CC: "draft-ietf-dnsop-avoid-fragmentation@ietf.org" <draft-ietf-dnsop-avoid-fragmentation@ietf.org>, "dnsop@ietf.org" <dnsop@ietf.org>, "benno@NLnetLabs.nl" <benno@NLnetLabs.nl>, "swoolf@pir.org" <swoolf@pir.org>, "tjw.ietf@gmail.com" <tjw.ietf@gmail.com>, The IESG <iesg@ietf.org>, Mahesh Jethanandani <mjethanandani@gmail.com>, "dnsop-chairs@ietf.org" <dnsop-chairs@ietf.org>
Thread-Topic: [DNSOP] Robert Wilton's Discuss on draft-ietf-dnsop-avoid-fragmentation-16: (with DISCUSS)
Thread-Index: AQHaPZInoxGG2QIgR0+/OBCbyGZKHrDwxGkJgAQ0ygCAQUpFRw==
Date: Wed, 13 Mar 2024 16:00:37 +0000
Message-ID: <LV8PR11MB853623E05654790A1BB0A1A1B52A2@LV8PR11MB8536.namprd11.prod.outlook.com>
References: <170421006263.51518.3056523891589638914@ietfa.amsl.com> <LV8PR11MB8536B8B0C65B0E2160B82720B57E2@LV8PR11MB8536.namprd11.prod.outlook.com> <24aeb153-d39a-45ca-a280-2782115055a9@redbarn.org>
In-Reply-To: <24aeb153-d39a-45ca-a280-2782115055a9@redbarn.org>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: LV8PR11MB8536:EE_|SA2PR11MB5193:EE_
x-ms-office365-filtering-correlation-id: 75095a0a-707d-4467-7011-08dc4376b943
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:LV8PR11MB8536.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(376005)(1800799015)(7416005)(38070700009); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_LV8PR11MB853623E05654790A1BB0A1A1B52A2LV8PR11MB8536namp_"
MIME-Version: 1.0
X-OriginatorOrg: cisco.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: LV8PR11MB8536.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 75095a0a-707d-4467-7011-08dc4376b943
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Mar 2024 16:00:37.3149 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ftSOyAoWTI1vb1rCFpyplXkwmS0bzPyhfhsaFbBV94zrg7PCe9cG6ThE5e2f/7wwnMHLSQ7UDbzzCGpd449oHg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA2PR11MB5193
X-Outbound-SMTP-Client: 72.163.7.169, rcdn-opgw-5.cisco.com
X-Outbound-Node: rcdn-core-11.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/V5cwdRYaSM57botHgWo-WBuNVc4>
Subject: Re: [DNSOP] Robert Wilton's Discuss on draft-ietf-dnsop-avoid-fragmentation-16: (with DISCUSS)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Mar 2024 16:00:46 -0000

Hi Paul, Murray & Warren,

Paul, Sorry, I had missed your update.  Thanks for addressing my concerns.  I have now cleared.

Murray, I think that this is now with you to check if your concerns have been addressed before Warren can approve.

Regards,
Rob


From: Paul Vixie <paul@redbarn.org>
Date: Thursday, 1 February 2024 at 02:56
To: Rob Wilton (rwilton) <rwilton@cisco.com>
Cc: draft-ietf-dnsop-avoid-fragmentation@ietf.org <draft-ietf-dnsop-avoid-fragmentation@ietf.org>, dnsop@ietf.org <dnsop@ietf.org>, benno@NLnetLabs.nl <benno@NLnetLabs.nl>, swoolf@pir.org <swoolf@pir.org>, tjw.ietf@gmail.com <tjw.ietf@gmail.com>, The IESG <iesg@ietf.org>, Mahesh Jethanandani <mjethanandani@gmail.com>, dnsop-chairs@ietf.org <dnsop-chairs@ietf.org>, Warren Kumari <warren@kumari.net>
Subject: Re: [DNSOP] Robert Wilton's Discuss on draft-ietf-dnsop-avoid-fragmentation-16: (with DISCUSS)
thanks rob for your long service. we'll do as you suggest.

Rob Wilton (rwilton) wrote on 2024-01-29 02:48:
> Hi Authors,
>
> Just a note/reminder that I am stepping down as an AD in March.  I don’t
> think that I’ve seen any reply to my DISCUSS comments (perhaps the
> authors and/or WG are still discussing the resolution), but if you are
> able to speed this up at all so that I can clear my discuss before I
> step down that would be preferable.  Actually, if you manage to clear
> all the DISCUSSes on this doc before March, so that Warren can approve
> it before the new IESG is seated, that would probably make both yours
> and Warren’s lives slightly easier at the transition.
>
> Regards,
>
> Rob
>
> *From: *DNSOP <dnsop-bounces@ietf.org> on behalf of Robert Wilton via
> Datatracker <noreply@ietf.org>
> *Date: *Tuesday, 2 January 2024 at 15:41
> *To: *The IESG <iesg@ietf.org>
> *Cc: *draft-ietf-dnsop-avoid-fragmentation@ietf.org
> <draft-ietf-dnsop-avoid-fragmentation@ietf.org>, dnsop-chairs@ietf.org
> <dnsop-chairs@ietf.org>, dnsop@ietf.org <dnsop@ietf.org>,
> benno@NLnetLabs.nl <benno@NLnetLabs.nl>, swoolf@pir.org
> <swoolf@pir.org>, tjw.ietf@gmail.com <tjw.ietf@gmail.com>,
> tjw.ietf@gmail.com <tjw.ietf@gmail.com>
> *Subject: *[DNSOP] Robert Wilton's Discuss on
> draft-ietf-dnsop-avoid-fragmentation-16: (with DISCUSS)
>
> Robert Wilton has entered the following ballot position for
> draft-ietf-dnsop-avoid-fragmentation-16: Discuss
>
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
>
>
> Please refer to
> https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/
>
> for more information about how to handle DISCUSS and COMMENT positions.
>
>
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-avoid-fragmentation/
>
>
>
> ----------------------------------------------------------------------
> DISCUSS:
> ----------------------------------------------------------------------
>
> Hi,
>
> Thanks for this document.
>
> I'm echoing Paul's and the SECDIR review comments here on the use of MAY in
> recommendations (since everywhere you see MAY it is equally valid for an
> interpretation to treat it as "MAY NOT"), but I think that this makes the
> document, as a proposed BCP, unclear enough that I'm raising this to
> level of a
> DISCUSS.
>
> (1) p 3, sec 3.1.  Recommendations for UDP responders
>
>     At the time of writing, most DNS server software did not set the DF
>     bit for IPv4, and many OS kernel constraints make it difficult to set
>     the DF bit in all cases.  Best Current Practice documents should not
>     specify what is currently impossible, so R2, which is setting the DF
>     bit, is "MAY" rather than "SHOULD".
>
> I think that this recommendation, particularly because it is using RFC 2119
> language, is unclear.  I would suggest rephasing this to something like:
>
>     R2.  Where supported, UDP responders SHOULD set IP "Don't Fragment
>     flag (DF) bit" [RFC0791] on IPv4.
>
> (2) p 3, sec 3.2.  Recommendations for UDP requestors
>
>     R6.  UDP requestors SHOULD limit the requestor's maximum UDP payload
>     size to the RECOMMENDED size of 1400 or a smaller size.
>
> I find this recommendation to be unclear because it mixes both a
> "SHOULD" and
> "RECOMMENDED", i.e., I find it unclear as to what the "SHOULD" applies
> to.  Is
> the recommendation (i) that UDP requestors should limit the maximum UDP
> payload.  Or (ii) is the recommendation that a limit of 1400 be used, or
> (iii)
> perhaps both.  Maybe rewording this to something like the following
> would help:
>
>     R6.  UDP requestors SHOULD limit the requestor's maximum UDP payload
>     size to 1400 bytes, but MAY limit the maximum UDP payload size to a
>     smaller size on small MTU (less than 1500 bytes) networks.
>
>     or,
>
>     R6.  UDP requestors SHOULD limit the requestor's maximum UDP payload
>     size.  It is RECOMMENDED to use a limit of 1400 bytes, but a smaller
>     limit MAY be used.
>
> (3) p 3, sec 3.2.  Recommendations for UDP requestors
>
>     R7.  UDP requestors MAY drop fragmented DNS/UDP responses without IP
>     reassembly to avoid cache poisoning attacks.
>
> As written, I don't think that this is really a recommendation.  Either
> it is a
> just a statement or fact (in which case it is not a recommendation), or it
> should be upgraded to a SHOULD.
>
> (4) p 4, sec 3.2.  Recommendations for UDP requestors
>
>     R7.  UDP requestors MAY drop fragmented DNS/UDP responses without IP
>     reassembly to avoid cache poisoning attacks.
>     R8.  DNS responses may be dropped by IP fragmentation.  Upon a
>     timeout, to avoid resolution failures, UDP requestors MAY retry using
>     TCP or UDP with a smaller EDNS requestor's maximum UDP payload size
>     per local policy.
>
> Again, I think that this document would be clearer if this was a SHOULD
> rather
> than a MAY.
>
> Regards,
> Rob
>
>
>
>
>
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
>


--
P Vixie

v2.23.0 | Report a Bug | By Email