Re: [DNSOP] new ANAME draft: draft-hunt-dnsop-aname-00.txt

"Peter van Dijk" <peter.van.dijk@powerdns.com> Thu, 13 April 2017 10:54 UTC

Return-Path: <peter.van.dijk@powerdns.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 65AE113146D for <dnsop@ietfa.amsl.com>; Thu, 13 Apr 2017 03:54:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kFZpfgKroCoZ for <dnsop@ietfa.amsl.com>; Thu, 13 Apr 2017 03:54:55 -0700 (PDT)
Received: from shannon.7bits.nl (shannon.7bits.nl [IPv6:2a01:1b0:202:40::1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0D8E11314F6 for <dnsop@ietf.org>; Thu, 13 Apr 2017 03:54:55 -0700 (PDT)
Received: from [192.168.137.1] (unknown [82.168.30.10]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: peter) by shannon.7bits.nl (Postfix) with ESMTPSA id 0C6B0C1B96; Thu, 13 Apr 2017 12:54:52 +0200 (CEST)
From: Peter van Dijk <peter.van.dijk@powerdns.com>
To: dnsop <dnsop@ietf.org>
Date: Thu, 13 Apr 2017 12:54:50 +0200
Message-ID: <3DE75A19-455D-4E5C-B0CC-FBB4D42B5D81@powerdns.com>
In-Reply-To: <CANLjSvVJS1-6S78R8xfubmc+rTVUon6Xa4YMbtQ7W9zVFC=Ckg@mail.gmail.com>
References: <20170407181139.GB66383@isc.org> <cc3bbc7a-3f48-2f7f-a3d9-3f752874fc00@redhat.com> <alpine.DEB.2.11.1704111641290.4393@grey.csi.cam.ac.uk> <alpine.LRH.2.20.999.1704111147390.8670@bofh.nohats.ca> <BCA68541-684C-417F-8B51-3D14D47C3BA1@powerdns.com> <CANLjSvVJS1-6S78R8xfubmc+rTVUon6Xa4YMbtQ7W9zVFC=Ckg@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 8bit
X-Mailer: MailMate (1.9.6r5347)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/mHbrYTtk_7rgiqs445RGwcPzkcE>
Subject: Re: [DNSOP] new ANAME draft: draft-hunt-dnsop-aname-00.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Apr 2017 10:54:57 -0000

Hello,
On 13 Apr 2017, at 11:53, Lanlan Pan wrote:

> Hi Peter,
>
> one question, will authoritative server return multiple ANAME RRs for 
> the
> same domain at one dns query ?
>
> for example,
>
> www.example.com  ANAME  us.www.example.com
> www.example.com  ANAME  cn.www.example.com
>
> or  return only one selected ANAME RR for one domain ? (based on
> authoritative's policy, resolver ip/client subnet/...)
>
> www.example.com  ANAME  us.www.example.com

Currently the draft explicitly states ‘No more than one ANAME resource 
record SHALL be present at any DNS node.’, but we have received 
multiple requests to relax this requirements, and will consider that.

That said, nothing prevents your own implementation from choosing the 
target based on any kind of local policy. So if you want to pick US or 
CN based on client IP, you can do that.

Kind regards,
-- 
Peter van Dijk
PowerDNS.COM BV - https://www.powerdns.com/