Re: [DNSOP] I-D Action: draft-ietf-dnsop-edns-client-subnet-07.txt
神明達哉 <jinmei@wide.ad.jp> Mon, 21 March 2016 18:38 UTC
Return-Path: <jinmei.tatuya@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC40612D9C9 for <dnsop@ietfa.amsl.com>; Mon, 21 Mar 2016 11:38:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.35
X-Spam-Level:
X-Spam-Status: No, score=-2.35 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.249, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i8tJ2T8QUKbp for <dnsop@ietfa.amsl.com>; Mon, 21 Mar 2016 11:38:36 -0700 (PDT)
Received: from mail-ig0-x234.google.com (mail-ig0-x234.google.com [IPv6:2607:f8b0:4001:c05::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1F87112D9F0 for <dnsop@ietf.org>; Mon, 21 Mar 2016 11:38:36 -0700 (PDT)
Received: by mail-ig0-x234.google.com with SMTP id nk17so77890586igb.1 for <dnsop@ietf.org>; Mon, 21 Mar 2016 11:38:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc; bh=Y6Dgp5Tq71/fqQgydKbUKPunfMPcUQy0Scp5oQNnQSs=; b=ZS5wQNeKclEdjKyERI4hdhqFB/n30P8WC4BVTGDqfveOiWMv6v8Evb/dQ1limjBkqa zM9au/iDC08YW/JynV3/pci5TZTzxJMLV4ayD/UOIF+CncA3EO4yncrfFbvQKkyqWTGR dY2pyfKxtZtKuGJ4JfaIY9vVPG9SU9ErE2Mw+QJcFta13lBI+wH712jTOcH3qedMUK+k w+0tcqimXZs+XDBV7i/jY2UWyJdCl4//YwkmMPFVoqaStCHDJW5Q87CRH6FnXIiaxjb6 eRjzQ2OcxN/sBSzQgFD717GkP5ZnR5DWgFHc+Rzteg6ikZVnQ6oz317g59y3CYru1zNs wvcQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:sender:in-reply-to:references:date :message-id:subject:from:to:cc; bh=Y6Dgp5Tq71/fqQgydKbUKPunfMPcUQy0Scp5oQNnQSs=; b=QGW3eg3uyY0hBaFNuxjQHDbtDjwNudPm4ne8TyK9XCE+1YUqS8sUdL561o/mC+kaCh ZoVxoTngb9wgGPLrbtwGakg+xqirtTTaL5Hmwg6aEQGSq1UnYSFSZ36CEllc5oJtbTrr JS1yzWaAFycBTpgkCTvsrb4arx0Ztg51lxIpkEHFiaY7tMOZUU4MAJTIzjGQy+kt4MBY hpA4kPETSP4o1vyxqHzgF/Mx5fif30CfgBnlSQuNcZYLhWZwYl9Kw7S04i3/fpNzJa+I JFBYjZ+nRWcGt9vRh7eA+wi3tg5ecMtilqbe/MyEc7MTNpHGIamsuv5DTEkpQEPdSnBm SAAQ==
X-Gm-Message-State: AD7BkJIki3eqLnXQ3bQEX++RtwufZlncgOJCbza142HzYcc78A39h1UTMXtUBPull/qVo5SNR7eh8L1dk9DtiQ==
MIME-Version: 1.0
X-Received: by 10.50.97.71 with SMTP id dy7mr14660522igb.78.1458585515252; Mon, 21 Mar 2016 11:38:35 -0700 (PDT)
Sender: jinmei.tatuya@gmail.com
Received: by 10.107.8.88 with HTTP; Mon, 21 Mar 2016 11:38:35 -0700 (PDT)
In-Reply-To: <20160321135159.GB28581@jurassic.l0.malgudi.org>
References: <20160321130839.31949.19155.idtracker@ietfa.amsl.com> <20160321135159.GB28581@jurassic.l0.malgudi.org>
Date: Mon, 21 Mar 2016 11:38:35 -0700
X-Google-Sender-Auth: 7zFRl25dKuQjvGj89WPKCQH_kQ4
Message-ID: <CAJE_bqcRbMWS=zVM51uPK-HX2+sy8wtnwB89aZEwxyjO1VjV1w@mail.gmail.com>
From: 神明達哉 <jinmei@wide.ad.jp>
To: Mukund Sivaraman <muks@isc.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/oY02rYp5dCKmKRR4iCEbV9hyLck>
Cc: dnsop <dnsop@ietf.org>
Subject: Re: [DNSOP] I-D Action: draft-ietf-dnsop-edns-client-subnet-07.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Mar 2016 18:38:43 -0000
At Mon, 21 Mar 2016 19:21:59 +0530, Mukund Sivaraman <muks@isc.org> wrote: > (1) Section 7.2.1. Authoritative Nameserver: > > > When deaggregating to correct the overlap, prefix lengths should be > > optimized to use the minimum necessary to cover the address space, in > > order to reduce the overhead that results from having multipe copies > > of the same answer. As a trivial example, if the Tailored Response > > for 1.2.0/20 is A but there is one exception of 1.2.3/24 for B, then > > the Authoritative Nameserver would need to provide Tailored Responses > > for 1.2.0/23, 1.2.2/24, 1.2.4/22, and 1.2.8/21 all pointing to A, and > > 1.2.3/24 to B. I'm confused about the revised Section 7.2.1 regarding overlapping prefixes. The 07 version of the draft now states: [...] Because it can't be guaranteed that queries for all longer prefix lengths would arrive before one that would be answered by the shorter prefix length, an Authoritative Nameserver MUST NOT overlap prefixes. But the above "trivial example" seems to talk about what an authoritative nameserver would do if it overlaps prefix...doesn't it simply break the MUST NOT in the first place? Also (ignoring the MUST NOT), what if a query is sent with a source prefix 1.2.1/24? The best matching prefix is 1.2.0/20, so isn't the tailored response A with the scope prefix length of 20? I mean, shouldn't the above deaggregated prefixes be incomplete? -- JINMEI, Tatuya
- [DNSOP] I-D Action: draft-ietf-dnsop-edns-client-… internet-drafts
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-edns-cli… Mukund Sivaraman
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-edns-cli… 神明達哉
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-edns-cli… Mukund Sivaraman
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-edns-cli… 神明達哉
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-edns-cli… Mukund Sivaraman