[DNSOP] Re: Proposal for opportunistic transport signaling from authoritative servers

Joe Abley <jabley@strandkip.nl> Wed, 25 June 2025 09:43 UTC

Return-Path: <jabley@strandkip.nl>
X-Original-To: dnsop@mail2.ietf.org
Delivered-To: dnsop@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 01677392C671; Wed, 25 Jun 2025 02:43:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=strandkip.nl
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id C9cdTbvwZ1Ru; Wed, 25 Jun 2025 02:43:25 -0700 (PDT)
Received: from dane.soverin.net (dane.soverin.net [185.233.34.11]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 5843E392C653; Wed, 25 Jun 2025 02:43:25 -0700 (PDT)
Received: from smtp.soverin.net (unknown [10.10.4.74]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits)) (No client certificate requested) by dane.soverin.net (Postfix) with ESMTPS id 4bRxhX1q6Zz1Z1s; Wed, 25 Jun 2025 09:43:24 +0000 (UTC)
Received: from smtp.soverin.net (smtp.soverin.net [10.10.4.100]) by soverin.net (Postfix) with ESMTPSA id 4bRxhW58fRzMc; Wed, 25 Jun 2025 09:43:23 +0000 (UTC)
Authentication-Results: smtp.soverin.net; dkim=pass (2048-bit key; unprotected) header.d=strandkip.nl header.i=@strandkip.nl header.a=rsa-sha256 header.s=soverin1 header.b=RSRNB0lb; dkim-atps=neutral
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=strandkip.nl; s=soverin1; t=1750844603; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=l7LK5FJ1S6+PhsBVSQCMUyf4fer9PAnkIxzu9yXcF+s=; b=RSRNB0lb90zBH4E/GjEd7Cm2LB4ja9lSpKxZZsU7XLgaOboj3Vrc9jl8YJw6EwqdiVKWub 7moel7U0uleeNlWh0VuSuuoeDuhOC/+9PzF/YdquLbLvoGaR81G/9slArdykGjryY8XDdQ f0ZNTIvRKrMLm/OGr1ckS9CSBy9gnJxjiX7jE6wGJO/6oEgr7/1JfsbBwrjvUOqs1lF5DD L9WTiU8menCgr/n6XUYTFXYLcIy+pAddd3jsshw+39rekNx6SZpAZHRm5drzFaij88qoNB KsHFTbk2nep5F4C76oZ11CKus6OqsdPW510MKDuYQOZJEoaug1dbU28yqRnAIQ==
X-CM-Analysis: v=2.4 cv=d/oPyQjE c=1 sm=1 tr=0 ts=685bc4bb a=kj9zAlcOel0A:10 a=48vgC7mUAAAA:8 a=HhGvFiGeyIpbFmF7tBwA:9 a=CjuIK1q_8ugA:10
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3826.600.51.1.1\))
From: Joe Abley <jabley@strandkip.nl>
In-Reply-To: <62A06625-1FDB-4234-BF39-AB510DE0C50C@internetstiftelsen.se>
Date: Wed, 25 Jun 2025 11:43:13 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <B63BAD87-FAAB-41D9-B021-76FE1966C6BF@strandkip.nl>
References: <DM6PR15MB236101155DF60A3C47B7138FB378A@DM6PR15MB2361.namprd15.prod.outlook.com> <CA8BCDDC-950F-4E07-B523-787C3C4769FD@strandkip.nl> <62A06625-1FDB-4234-BF39-AB510DE0C50C@internetstiftelsen.se>
To: Johan Stenstam <johan.stenstam=40internetstiftelsen.se@dmarc.ietf.org>
X-Spampanel-Class: ham
Message-ID-Hash: GVQZLE2G6QF4SEM3JUGIXPSWG74EP4OF
X-Message-ID-Hash: GVQZLE2G6QF4SEM3JUGIXPSWG74EP4OF
X-MailFrom: jabley@strandkip.nl
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Ben Schwartz <bemasc=40meta.com@dmarc.ietf.org>, Working Group DNSOP <dnsop@ietf.org>, "dns-privacy@ietf.org" <dns-privacy@ietf.org>, Erik Bergström <erik.bergstrom@internetstiftelsen.se>, Leon Fernandez <leon.fernandez@internetstiftelsen.se>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [DNSOP] Re: Proposal for opportunistic transport signaling from authoritative servers
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/kGvuvyP_nke1fbSaPawascuc9I4>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>

On 25 Jun 2025, at 11:27, Johan Stenstam <johan.stenstam=40internetstiftelsen.se@dmarc.ietf.org> wrote:

> The proposal is to add the transport signal when sending an authoritative response, i.e. an Answer, from an authoritive nameserver (where the auth nameserver will make a statement about its own transport capabilities). 
> 
> There is no suggestion about changing anything in a referral from the parent.

Ahh, that's where I was confused.

> I think there may be a misunderstanding hidden here.

I think you were right!


Joe