IETF Logo Mail Archive

Re: [DNSOP] I-D Action: draft-ietf-dnsop-isp-ip6rdns-01.txt

George Michaelson <ggm@algebras.org> Tue, 22 December 2015 22:39 UTC

Return-Path: <ggm@algebras.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC4681A9174 for <dnsop@ietfa.amsl.com>; Tue, 22 Dec 2015 14:39:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.678
X-Spam-Level:
X-Spam-Status: No, score=-0.678 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, J_CHICKENPOX_44=0.6, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i96FFcCf2LBJ for <dnsop@ietfa.amsl.com>; Tue, 22 Dec 2015 14:39:01 -0800 (PST)
Received: from mail-qk0-x231.google.com (mail-qk0-x231.google.com [IPv6:2607:f8b0:400d:c09::231]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 955BD1A916A for <dnsop@ietf.org>; Tue, 22 Dec 2015 14:39:01 -0800 (PST)
Received: by mail-qk0-x231.google.com with SMTP id n135so34747463qka.2 for <dnsop@ietf.org>; Tue, 22 Dec 2015 14:39:01 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=algebras-org.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=wyrG6FVODB5u8qhS215lqrSoICqGw/nwLr4c5/a9mdg=; b=WxlSn5hK6fBNDEoK/F2H8qLezeR/Q9z+lRcDo9K5Sk5IUbD234TMPcscxjnuDSY/QY NVW4ihqMWMeTNUjhdd9DcTHZAW1KyVxDuxJFYSdelRCN5256wP/DDokcPSKvyaiI8jMO Nd+VotoD6qBvpchVJyhxZBD+PCUL7QVZVyFuMtmnoVeASnKIUOOoMmabRpPj1rTfgvZ0 qO5yXdVLZxVfT3WsTgUMn3a7Ka07KOuD1jtSphGMaSBKFnvAtKCELsXWslkv99Lv5gB8 mmhCkJzYnHmRCDqY1q7XbGVGyiCKn7yBL5RP2nSFr2/7FivT/b0BPrVwGWlxyzTDCDi9 Kugw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type; bh=wyrG6FVODB5u8qhS215lqrSoICqGw/nwLr4c5/a9mdg=; b=A9vC5j7RAfc2j1T2ly24+wLUTfw2K9qBAAkkOGHUXDsauuXcW1ppRPqarbzAE/OpO2 DoUV2ttAitll1BKYCs8XyLuS7KkzNE3jN295VFq8j0/MMGMLOEjoT0HyYrkkJc34io63 XBglSOI4Rf60FYyazfPd3PAji7V/t0JHV21+Dc91f1V1oXhFu/sWkcQlMYeleEm4dvfo Dwx9FGiyenfpRsVkUCsJnUpdNvjjr0lwVwzMrX586hcTSKZIwbl/1k5a1L/42RoUKLAO 0b0KeaCA9VeFZr7Qvtuvp8TcQBcywMUBYjVqWFSnk27ianJVqLszUMWf1lXmUshlr/Io K4ww==
X-Gm-Message-State: ALoCoQl9ZF2j6IIM1KsFg1yWTutZgFPXCioAoIQW7D9K/vBVv7+SduLL30hUIKVJRM0wiO5vvgmyXZFXwhWEmCIvgUfDf/egwQ==
MIME-Version: 1.0
X-Received: by 10.55.18.7 with SMTP id c7mr36031287qkh.33.1450823940607; Tue, 22 Dec 2015 14:39:00 -0800 (PST)
Received: by 10.55.103.214 with HTTP; Tue, 22 Dec 2015 14:39:00 -0800 (PST)
X-Originating-IP: [2001:dc0:a000:4:1439:cc18:246e:7831]
In-Reply-To: <20151222194820.20668.96095.idtracker@ietfa.amsl.com>
References: <20151222194820.20668.96095.idtracker@ietfa.amsl.com>
Date: Wed, 23 Dec 2015 08:39:00 +1000
Message-ID: <CAKr6gn1yp-+Dx1uh3BpBX5r30Ht6Neq9yphmcTraK4x0Yw4oGQ@mail.gmail.com>
From: George Michaelson <ggm@algebras.org>
To: dnsop WG <dnsop@ietf.org>, Lee Howard <lee.howard@twcable.com>
Content-Type: multipart/alternative; boundary="001a113ad9089ca8230527844597"
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/lFVJAZAu7cgSQ8kAm4XQzL5eYj0>
Subject: Re: [DNSOP] I-D Action: draft-ietf-dnsop-isp-ip6rdns-01.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Dec 2015 22:39:04 -0000

I want to dispute one part of this: the "DNSSEC may not scale well" part.
With thanks to Ray Bellis, APNIC has been running an evldns webserver which
signs on the fly, and we have achieved north of 3000 signs/second from this
code on a smallish cloud node signing on demand.

Our model was unique domains (the 1x1 ad system) but Ray coded a simple
ring buffer and for the repeat queries, there was a demonstrable cache
benefit to keeping some amount of signed state live without having to
re-sign.

I think that on-the-fly DNSSEC for IPv6 is tractable.

-George

On Wed, Dec 23, 2015 at 5:48 AM, <internet-drafts@ietf.org> wrote:

>
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
>  This draft is a work item of the Domain Name System Operations Working
> Group of the IETF.
>
>         Title           : Reverse DNS in IPv6 for Internet Service
> Providers
>         Author          : Lee Howard
>         Filename        : draft-ietf-dnsop-isp-ip6rdns-01.txt
>         Pages           : 13
>         Date            : 2015-12-22
>
> Abstract:
>    In IPv4, Internet Service Providers (ISPs) commonly provide IN-
>    ADDR.ARPA information for their customers by prepopulating the zone
>    with one PTR record for every available address.  This practice does
>    not scale in IPv6.  This document analyzes different approaches and
>    considerations for ISPs in managing the ip6.arpa zone for IPv6
>    address space assigned to many customers.
>
>
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-isp-ip6rdns/
>
> There's also a htmlized version available at:
> https://tools.ietf.org/html/draft-ietf-dnsop-isp-ip6rdns-01
>
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-dnsop-isp-ip6rdns-01
>
>
> Please note that it may take a couple of minutes from the time of
> submission
> until the htmlized version and diff are available at tools.ietf.org.
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
>

v2.23.0 | Report a Bug | By Email