IETF Logo Mail Archive

Re: [DNSOP] DNS names for local networks - not only home residental networks ...

Ralph Droms <rdroms.ietf@gmail.com> Sun, 03 September 2017 00:36 UTC

Return-Path: <rdroms.ietf@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9DCEA13300F for <dnsop@ietfa.amsl.com>; Sat, 2 Sep 2017 17:36:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jqMrFN8LzvCX for <dnsop@ietfa.amsl.com>; Sat, 2 Sep 2017 17:36:56 -0700 (PDT)
Received: from mail-qt0-x230.google.com (mail-qt0-x230.google.com [IPv6:2607:f8b0:400d:c0d::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 08237132D0C for <dnsop@ietf.org>; Sat, 2 Sep 2017 17:36:56 -0700 (PDT)
Received: by mail-qt0-x230.google.com with SMTP id v20so12718458qtg.3 for <dnsop@ietf.org>; Sat, 02 Sep 2017 17:36:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=sebeh1fxpvV4YiJPTHAfKkrCBKOZM4i1+iaPTw0VqNE=; b=HGwIJ6x9AmnGnSCl2VQHCMV30/yE/F2K+dOTqFuh3MAhbZZPzKzXQCUV/Qx8j5rU5j ZFXMyyx6aDZ3sFV3ICssPb8zMNCsbfnes43e0lTi5XqRx/YhgvWLCFSWmUmMjLJYdAvi Vy0th86lFcpilViJtL3lzphJVoGdPvIyka6c5mqLbxBw9YnF8CM2KbaT9Eg5MjkI9rb3 tZ1PIN4gYXASajDUSB9hIgbV+MdG/U0pVFiW9aA2DjXTxLt+7k0GQFOVl6FLjfIsibL+ v1dLhppLqdaAJYNz7hzgSYY7d2B4248HQ/a9RGIwgeKmKpY3pIjh8ciMqZ6PXAeTrOtm MJLw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=sebeh1fxpvV4YiJPTHAfKkrCBKOZM4i1+iaPTw0VqNE=; b=JEkschnGav2O5nrQNDyf5iGgCtwlw8KLFvkqLpAe2Oza1d5t5SlOSrwGf4MkoWCIKr m4uHA/SZS4pPIbRpVQWYxzyehsQ0w2hRq1fJVleo0AsNd3lJCI9h/OvEsDWD0ye8I/jx NZVsPiOMLv8Ut+ERKW3caCdYwc3SzO9jyNyOV1n7tx3TX40Vvst+Th8xAVDacHRogyQb Y0pwuDvHoOMGFzS8HUv8KyA7fi0ht/qAIGAu/orUESRJccDMnRk/NWnF6CY64irxe4Am GEVRuo9Muw7rEiCqdy8mSFoszFKtoPdbFcE1hN8H7fAh0OQdorJmd/jHTEw8Kh9tP3U1 ggcQ==
X-Gm-Message-State: AHPjjUj5LQsX93vWyQ0IyDS17EkhTWhxHM1yMQkm11CB1rYMXQrTkt+R 3sksKeNTJfH/Xwhx7Io=
X-Google-Smtp-Source: ADKCNb75yKRChtf/sUOrNI1C2FDxaDjKOYJiY6GEzy+7M2UB+Zuqb/uDHW6QKpMEEzNZ4fJ+9sBTmw==
X-Received: by 10.200.52.34 with SMTP id u31mr10419212qtb.136.1504399015236; Sat, 02 Sep 2017 17:36:55 -0700 (PDT)
Received: from ?IPv6:2601:18f:801:600:2447:13ef:7df7:c7f3? ([2601:18f:801:600:2447:13ef:7df7:c7f3]) by smtp.gmail.com with ESMTPSA id j129sm1593350qkd.92.2017.09.02.17.36.54 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 02 Sep 2017 17:36:54 -0700 (PDT)
From: Ralph Droms <rdroms.ietf@gmail.com>
Message-Id: <8462E244-3DD1-427A-A2D0-B51CFE1601C3@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_E6C6F236-7BFF-41B4-AC3B-6FFCA379463B"
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
Date: Sat, 02 Sep 2017 20:36:50 -0400
In-Reply-To: <CAHw9_iKKDFj4SJtpxV=egNB0D=jkBFnQ68N5kOgUBFieexvsTA@mail.gmail.com>
Cc: Paul Wouters <paul@nohats.ca>, "dnsop@ietf.org" <dnsop@ietf.org>, "Walter H." <Walter.H@mathemainzel.info>
To: Warren Kumari <warren@kumari.net>
References: <150428805872.6417.9525310755360551475@ietfa.amsl.com> <59A9B760.2060209@mathemainzel.info> <alpine.LRH.2.21.1709011556280.12556@bofh.nohats.ca> <59A9BD75.5010408@mathemainzel.info> <alpine.LRH.2.21.1709011612470.12556@bofh.nohats.ca> <CAHw9_iKKDFj4SJtpxV=egNB0D=jkBFnQ68N5kOgUBFieexvsTA@mail.gmail.com>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/WRTpBjjjec1OxyuW21Eywhpw9y0>
Subject: Re: [DNSOP] DNS names for local networks - not only home residental networks ...
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 03 Sep 2017 00:36:59 -0000

> On Sep 2, 2017, at 8:29 PM, Warren Kumari <warren@kumari.net> wrote:
> 
> On Fri, Sep 1, 2017 at 4:14 PM, Paul Wouters <paul@nohats.ca> wrote:
>> On Fri, 1 Sep 2017, Walter H. wrote:
>> 
>>>> If you are a company and you are using a hardcoded domain of "local",
>>>> then you have been and still are, completely broken. The only fix is to
>>>> rename your network.
>>> 
>>> ACK and which non public domain name I can use for this
>>>  that doesn't conflict now and will not conflict in the future?
>> 
>> 
>> Something that's yours and not squatted. For example
>> internal.mathemainzel.info.
>> 
>> Please see the last three years of dnsops and homenet working group list
>> archives.
>> 
> 
> ... perhaps the other way of looking at the last thirty three years of
> DNS is that people *do* actually want something like this, and that
> perhaps it is time to actually create something specifically for it.
> Our smacking people on the nose with rolled up newspapers and saying
> "no, bad operator" ignores the fact that people still want this, and
> still do this, and there ain't nothing we can do to stop them...
> 
> And so: https://tools.ietf.org/html/draft-wkumari-dnsop-internal-00
> 
> This asks for a Special Use Name, specifically for this sort of thing
> (and, yes, for building test networks, and for labeling devices which
> have no Internet connection, etc). The desire and need for something
> like this has been identified / discussed for a long time - the most
> recent was probably when we decided that .alt would only be for
> non-DNS contexts, and that someone should go make something like this
> for the DNS - think of it like RFC1918 for names.
> It will require an unsecured delegation, for which we currently have
> no process, and this (if people think it is a good idea!) will require
> process to be created -- which A: will take many many years, and B: if
> at least somewhat unlikely to happen -- but, if we don't at least ask,
> we certainly won't get it...

Warren - I've only read part of your draft, and I'll comment on that part of it...

I was immediately struck by the parallel between <something-internal> and home.arpa.  How are the two cases different?  Can you explain why this text from section 3.2 of your doc applies to internal.arpa and not to homenet.arpa?  

   It may also cause issues when server operators
   override part of the .arpa domain in order to instantiate
   something.arpa.

- Ralph


> 
> And yes, this is somewhat of a straw-man.
> W
> 
> 
>> 
>> Paul
>> 
>> _______________________________________________
>> DNSOP mailing list
>> DNSOP@ietf.org
>> https://www.ietf.org/mailman/listinfo/dnsop
> 
> 
> 
> -- 
> I don't think the execution is relevant when it was obviously a bad
> idea in the first place.
> This is like putting rabid weasels in your pants, and later expressing
> regret at having chosen those particular rabid weasels and that pair
> of pants.
>   ---maf
> 
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop

v2.23.0 | Report a Bug | By Email