IETF Logo Mail Archive

Re: [DNSOP] New draft for ALIAS/ANAME type

Bryan Hughes <bhughes@tiggee.com> Fri, 07 April 2017 16:12 UTC

Return-Path: <bhughes@tiggee.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 38AC0129400 for <dnsop@ietfa.amsl.com>; Fri, 7 Apr 2017 09:12:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=tiggee.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UolrzdemS1tV for <dnsop@ietfa.amsl.com>; Fri, 7 Apr 2017 09:12:41 -0700 (PDT)
Received: from mail-vk0-x236.google.com (mail-vk0-x236.google.com [IPv6:2607:f8b0:400c:c05::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A2330124282 for <dnsop@ietf.org>; Fri, 7 Apr 2017 09:12:41 -0700 (PDT)
Received: by mail-vk0-x236.google.com with SMTP id r69so80428300vke.2 for <dnsop@ietf.org>; Fri, 07 Apr 2017 09:12:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tiggee.com; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=BrpopjOpTLPswYCM5KNJ0lLklAWGHs6FJO89hSOO8Xc=; b=CrgchMEk7W841Byma0IfK4OpJDU6sUZUVYGmb/7GGlgOCu2WP4UGjtlHJUUNfxKyfK MpAgArnw1DO9bW6d/XcI004COjSux4TCtdNHBvOeH+72xvDbVogB0tmYnBY0eCUeiot6 yL3Dmh4Vdww++tJ5U508sqiBm5sRHt2SfWFkU=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=BrpopjOpTLPswYCM5KNJ0lLklAWGHs6FJO89hSOO8Xc=; b=p2yx8FUBh2oRHWRzHXT5TBaafjnxCF8QjOkgL4/an2Z9zbya9TPKQ9S2P6TqQfaIIq JViIMVSZPAXo5s/eEeye8hhsWeOggh3kLeqjEyMOZEdUWGqLmiX1ZgPwrzYcVVCf58tx dsFGULXa41kj0iRdZXtfXls1Yd0uhRxoRUe2H53erDK0mUyOMsLjZ3dBdGoUkW9WIcAn vY/ZvvSpVEfGWV/84eodEGAvE4VmIrSC3tFra/lj7D+zs9RnqHIodlf3IajmQ/HHjEo8 k3bH8lEiOPZ+JT4KVf7doK3hwpgMSyt96Op2aVgPmihuFsP7zlAGF9cH+jLk/04N0GAo ESrg==
X-Gm-Message-State: AFeK/H2BWkaZImf46gj6zqi8uZFotkIT3akGNnBlLy4fnJeEyllpH15W7cnSH6vHbg6TLQHWnwP/2RdA1G93C0jQ
X-Received: by 10.159.48.221 with SMTP id k29mr21041931uab.6.1491581560574; Fri, 07 Apr 2017 09:12:40 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.103.73.132 with HTTP; Fri, 7 Apr 2017 09:12:39 -0700 (PDT)
In-Reply-To: <887fdc84-cefa-97f4-3e93-c013cfea9fe7@nic.cz>
References: <20170330230806.6273.qmail@ary.lan> <9232F4F4-772F-48AA-80FB-C990662AFD7A@powerdns.com> <alpine.DEB.2.11.1704031253200.13590@grey.csi.cam.ac.uk> <CAAiTEH91_jo2p2kEhtzc=B2KSnqZQ9XLAVsY2TYbh7DTcCcD4Q@mail.gmail.com> <alpine.DEB.2.11.1704041815020.13590@grey.csi.cam.ac.uk> <CAAiTEH8ik1gKkzcJxMWQVMKssQyJUf1aV-Awpuhh2YReadL2vw@mail.gmail.com> <887fdc84-cefa-97f4-3e93-c013cfea9fe7@nic.cz>
From: Bryan Hughes <bhughes@tiggee.com>
Date: Fri, 07 Apr 2017 12:12:39 -0400
Message-ID: <CALE91wJ+RaPqgvJ5TXE9Ou0fHeqghjtCUPZqpt6Q3DVo2t6Rag@mail.gmail.com>
To: Petr Špaček <petr.spacek@nic.cz>
Cc: Matthew Pounsett <matt@conundrum.com>, Tony Finch <dot@dotat.at>, dnsop <dnsop@ietf.org>, Peter van Dijk <peter.van.dijk@powerdns.com>
Content-Type: multipart/alternative; boundary="f403045dd180126ed3054c95e524"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/hgE22eweouR4-Y9wOnPCErINN4w>
Subject: Re: [DNSOP] New draft for ALIAS/ANAME type
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Apr 2017 16:12:44 -0000

In many cases, DNS Made Easy is seeing ANAME records requiring synthesized
A record updates every 90 seconds or so. Also, it is surprising to me that
our non-apex ANAME record count has surpassed apex ANAME record count by a
significant amount. We have approximately 25% fewer apex ANAME records than
non-apex, however apex ANAME records account for over 75% of ANAME zone
update activity. We currently process around 50,000 distinct ANAME records
and we are seeing an average of 60, max of 925, and min of 0 zone updates
per zone per day with an average of 1.74 synthesized A records per non-apex
ANAME record and 1.41 synthesized A records per apex ANAME record.


On Fri, Apr 7, 2017 at 2:44 AM, Petr Špaček <petr.spacek@nic.cz> wrote:

> On 4.4.2017 19:30, Matthew Pounsett wrote:
> > On 4 April 2017 at 13:21, Tony Finch <dot@dotat.at
> > <mailto:dot@dotat.at>> wrote:
> >
> >     > I believe that's a faulty assumption.   Here's some data:
> >     >
> >     > [...] During the month of February, [...] an average of 31 changes
> >     per zone. [...]
> >
> >     That seems to agree with what I meant, though I probably should have
> >     said
> >     "per-zone" somewhere :-)
> >
> > That's the average, but there's a not-insignificant number there being
> > updated many times per day.    Most of the time, you're right, there are
> > few changes, but one can't assume that any given alias will have a low
> > rate of change.
>
> Numbers, that really helps!
>
> If I consider the numbers above and the fact that IXFR is able to deal
> even dynamically updated zones, I conclude that pushing ANAME logic to
> provisioner side is reasonable approach and that added complexity in
> name server itself is not warranted.
>
> --
> Petr Špaček  @  CZ.NIC
>
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
>

v2.23.0 | Report a Bug | By Email