IETF Logo Mail Archive

Re: [DNSOP] Requesting adoption of draft-spacek-dnsop-update-clarif

Mark Andrews <marka@isc.org> Mon, 31 August 2015 22:18 UTC

Return-Path: <marka@isc.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 780AB1B53C0; Mon, 31 Aug 2015 15:18:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.911
X-Spam-Level:
X-Spam-Status: No, score=-6.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l1i4VaZwNlkQ; Mon, 31 Aug 2015 15:18:47 -0700 (PDT)
Received: from mx.ams1.isc.org (mx.ams1.isc.org [199.6.1.65]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1EA7A1B65F4; Mon, 31 Aug 2015 15:18:47 -0700 (PDT)
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx.ams1.isc.org (Postfix) with ESMTPS id 5D0551FCAC5; Mon, 31 Aug 2015 22:18:43 +0000 (UTC)
Received: from zmx1.isc.org (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTPS id A254B16003E; Mon, 31 Aug 2015 22:20:02 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id 49CA716009C; Mon, 31 Aug 2015 22:20:02 +0000 (UTC)
Received: from zmx1.isc.org ([127.0.0.1]) by localhost (zmx1.isc.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 7S0jKmTTGEwm; Mon, 31 Aug 2015 22:20:02 +0000 (UTC)
Received: from rock.dv.isc.org (c122-106-161-187.carlnfd1.nsw.optusnet.com.au [122.106.161.187]) by zmx1.isc.org (Postfix) with ESMTPSA id AD0C516003E; Mon, 31 Aug 2015 22:20:01 +0000 (UTC)
Received: from rock.dv.isc.org (localhost [IPv6:::1]) by rock.dv.isc.org (Postfix) with ESMTP id B4CAB368500E; Tue, 1 Sep 2015 08:18:37 +1000 (EST)
To: Joe Abley <jabley@hopcount.ca>
From: Mark Andrews <marka@isc.org>
References: <20150827102513.24940.39559.idtracker@ietfa.amsl.com> <55DEE8C5.3010708@redhat.com> <DE9077A2-34F4-4153-8F8C-64E8A371C036@hopcount.ca>
In-reply-to: Your message of "Mon, 31 Aug 2015 17:44:49 -0400." <DE9077A2-34F4-4153-8F8C-64E8A371C036@hopcount.ca>
Date: Tue, 01 Sep 2015 08:18:37 +1000
Message-Id: <20150831221837.B4CAB368500E@rock.dv.isc.org>
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/ovpKcyV7Gcd6zeX8tJpEnb-yCqI>
Cc: Petr Spacek <pspacek@redhat.com>, IETF DNSOP WG <dnsop@ietf.org>, dnsop-chairs@ietf.org
Subject: Re: [DNSOP] Requesting adoption of draft-spacek-dnsop-update-clarif
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 31 Aug 2015 22:18:49 -0000

In message <DE9077A2-34F4-4153-8F8C-64E8A371C036@hopcount.ca>, "Joe Abley" writ
es:
> Hi Petr,
> 
> I have reviewed this draft.
> 
> A couple of minor editorial nits aside, I think it does a good job at 
> providing a solution to the problem it identifies.
> 
> [You might consider using "initiator" rather than "requestor", 
> incidentally; I think I first saw "initiator" and "responder" in one of 
> Vixie's drafts, and I like them to describe the actors that engage in a 
> single DNS transaction.]
> 
> People are (I think) used to seeing CNAMEs in the "forward" namespace. 
> People are apparently less familiar with them in the "v4 reverse" 
> namespace (or else you wouldn't have been motivated to write this 
> draft).
> 
> Since the core problem here is that people are not realising that there 
> really is no "forward" and "reverse" namespace (there's just a single 
> namespace plus some conventions) it seems slightly odd that this 
> document explicitly addresses the problem with reference to the 
> IN-ADDR.ARPA domain. The advice holds true for the whole namespace, so 
> why restrict it?

UPDATE is a general protocol.  You need to decide if you are updating
the data at the CNAME owner or the CNAME target.  There is no correct
thing to do in the general case.  

You almost certainly don't want to follow the CNAME in this case.

	update add example.net. 3600 CNAME example.com.

For this one you wouldn't want to follow the CNAME.

	update delete example.net. CNAME
	update add example.net. 3600 NS foo.example.com.

If you are using a zone management tool you almost certainly don't
want to follow a CNAME if it is present.

If you are updating the name associated with a machine you are starting
with a IP address and wanting to update the PTR record after following
the CNAME chain if any.  This is a specific case where you know that
you want to change the target of the CNAME chain if it is present.

> I realise the specification in section 4 doesn't specify that it's only 
> for use under the IN-ADDR.ARPA domain, but that's where the preamble 
> leads you, and the example given in the first paragraph is still an IPv4 
> reverse one.
> 
> In answer to the actual question you asked, I support adoption, and I'll 
> support adoption again when the chairs actually ask for it, at which 
> point I can review again if anybody wants me to :-)
> 
> Joe
> 
> On 27 Aug 2015, at 6:39, Petr Spacek wrote:
> 
> > Dear DNSOP Chairs,
> >
> > I'm requesting a call for adoption of 
> > draft-spacek-dnsop-update-clarif.
> >
> > We did not have time allocated for discussing this in Prague but the 
> > draft is
> > so short and easy (to quote Mark's words: "blatantly obvious") that I 
> > do not
> > feel that postponing this till Yokohama is necessary.
> >
> > Thank you.
> > Petr Spacek
> >
> >
> > A new version of I-D, draft-spacek-dnsop-update-clarif-01.txt
> > has been successfully submitted by Petr Spacek and posted to the
> > IETF repository.
> >
> > Name:		draft-spacek-dnsop-update-clarif
> > Revision:	01
> > Title:		Clarifications to the Dynamic Updates in the Domain Nam
> e 
> > System (DNS
> > UPDATE) specification
> > Document date:	2015-08-27
> > Group:		Individual Submission
> > Pages:		5
> > URL:
> > https://www.ietf.org/internet-drafts/draft-spacek-dnsop-update-clarif-01.tx
> t
> > Status:         
> > https://datatracker.ietf.org/doc/draft-spacek-dnsop-update-clarif/
> > Htmlized:       
> > https://tools.ietf.org/html/draft-spacek-dnsop-update-clarif-01
> > Diff:
> > https://www.ietf.org/rfcdiff?url2=draft-spacek-dnsop-update-clarif-01
> >
> > Abstract:
> > This document clarifies interaction among Dynamic Updates in the
> > Domain Name System (DNS UPDATE), Classless IN-ADDR.ARPA delegation,
> > and Secure Domain Name System (DNS) Dynamic Update in the presence of
> > CNAME/DNAME redirections.
> >
> >
> >
> >
> > Please note that it may take a couple of minutes from the time of 
> > submission
> > until the htmlized version and diff are available at tools.ietf.org.
> >
> > The IETF Secretariat
> >
> > _______________________________________________
> > DNSOP mailing list
> > DNSOP@ietf.org
> > https://www.ietf.org/mailman/listinfo/dnsop
> 
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email