Re: [DNSOP] I-D Action: draft-muks-dnsop-dns-catalog-zones-04.txt

神明達哉 <jinmei@wide.ad.jp> Mon, 12 March 2018 17:59 UTC

Return-Path: <jinmei.tatuya@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 97FAE126579 for <dnsop@ietfa.amsl.com>; Mon, 12 Mar 2018 10:59:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.4
X-Spam-Level:
X-Spam-Status: No, score=-1.4 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.25, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.25, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P2VriAr0vqF3 for <dnsop@ietfa.amsl.com>; Mon, 12 Mar 2018 10:59:14 -0700 (PDT)
Received: from mail-wr0-x232.google.com (mail-wr0-x232.google.com [IPv6:2a00:1450:400c:c0c::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 27D851200C5 for <dnsop@ietf.org>; Mon, 12 Mar 2018 10:59:14 -0700 (PDT)
Received: by mail-wr0-x232.google.com with SMTP id r66so9028847wrb.6 for <dnsop@ietf.org>; Mon, 12 Mar 2018 10:59:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=wXvZ1W1nHdG5EOjvU8uoR4VLG8Ko3pAydfWvFoe03vI=; b=sshebE1bdGElLvwSjScoKC5pSVdBFjY7KDGYHyBcPWhZ55v6G6z7HrGCdx5bn6OrNd wUs5XZ9OaiLhfd9JM2dCfW/32Y+LgCGycNGjP3F2w8eBVJKM15YCesoK5vQBIGmzA8Ny 1g+y0ZaJjhgng11sIaV1b8fKENB71hOAQOMMm2XIASkhTXfPj5On5g9VaHaellxOSlHZ wjtmRBUO0MUxyM6IVhhlkLJsQJqj9CACUV+JsNczmyNi7IJ8GYtSbHDpXu9gbR4TmXku qkxL3mUkp/l3jnbAAck9kbrKQ+HWBPy7BwIsv5JbhnbojlgDbdIIZO+O4v/siyduhB42 GTHQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=wXvZ1W1nHdG5EOjvU8uoR4VLG8Ko3pAydfWvFoe03vI=; b=bnyL/I2QY6DnuSJpW0kueb6V6dH35iRIrn4kRT5ySXseGmp9edrSxfvsaEVMjYBgDk mfSH72NsgBwGsE7gxDmgWW1Brh1/Gk/4VeEAywGiX/5BIof7Rtp0FKyNUcFqTI1NbS58 H4x+28hbZSysN82nmY1f3VokwRlzew9cdp/2OC1u6tXRSAmmel9M3UBGeBr2BGindhH0 rWvyaGAYIUtqotea8OopNDAVoswSlzNicISDboDPjwcDzaYIpxh8DTKPzxLJfOJ9bEdq L6W3Om2X7+h0G9EYkuG6aEeDSEdyGlicTIGxYHv1FxBvQ22LwdQH6gAAPz/V1SNAW8Gu w1uQ==
X-Gm-Message-State: AElRT7E/Vpg3GDRFLZmuhRf18J6yeSCORNDCf4Kj9reGpMs98/A8tlZ3 vPxhD67W52E/bFY2R6y7ZCdwEeGeADX3fbCoTmQAZtr/
X-Google-Smtp-Source: AG47ELtHfuLbOmAqjSz/Qvme851zvtuCRTovO4fhxOLkfosPXVmtkxzUiOlj7fG1RsbQK3NjpOKnzNI5PJkBB5REg10=
X-Received: by 10.223.138.234 with SMTP id z39mr2296348wrz.35.1520877552387; Mon, 12 Mar 2018 10:59:12 -0700 (PDT)
MIME-Version: 1.0
Sender: jinmei.tatuya@gmail.com
Received: by 10.223.134.1 with HTTP; Mon, 12 Mar 2018 10:59:11 -0700 (PDT)
In-Reply-To: <20180310162615.GA28458@jurassic>
References: <151990782328.10030.7325038774873512859@ietfa.amsl.com> <9ab0208f-29e3-10b0-e360-125257b2b238@bellis.me.uk> <CAJE_bqe-5-aD7yTkTSzu+fpSDEJw_TCYyL792cfqboDQXhmJ_g@mail.gmail.com> <20180310162615.GA28458@jurassic>
From: =?UTF-8?B?56We5piO6YGU5ZOJ?= <jinmei@wide.ad.jp>
Date: Mon, 12 Mar 2018 10:59:11 -0700
X-Google-Sender-Auth: SZI1X0FP9VAfM7oudvLHZiFzrkE
Message-ID: <CAJE_bqfttqXqCnH6d8EKFVVsnoyRkdNW2ZmTX6Veqn3zF2oHLA@mail.gmail.com>
To: Mukund Sivaraman <muks@isc.org>
Cc: dnsop <dnsop@ietf.org>, Ray Bellis <ray@bellis.me.uk>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/vCqYCSI1nSj-lPzJG0oqAQUgO4A>
Subject: Re: [DNSOP] I-D Action: draft-muks-dnsop-dns-catalog-zones-04.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Mar 2018 17:59:16 -0000

At Sat, 10 Mar 2018 21:56:15 +0530,
Mukund Sivaraman <muks@isc.org> wrote:

> > I've read draft-muks-dnsop-dns-catalog-zones-04.  I see the motivation
> > of automating the synchronization of primary/secondary configurations.
> > Personally, however, I'm not (yet?) convinced that this should be
> > "standardized" in the form of an RFC or that this should be done
> > through another tricky use of DNS.  One big reason for standardization
> > is to have a unified way that is interoperable with multiple different
> > vendors.  But when it comes to configuration, difference on
> > vendor-specific options often matters, and unless the common basic set
> > of configuration is sufficiently common, a generic and interoperable
> > mechanism will be useless.  I'm not yet convinced about it regarding
>
> Some background of how/why catalog zones feature in BIND 9.11 and the
> draft came to be is that we often got feedback about requiring better
> ways to provision zones and content on multiple nameservers, and
> different operators had different ideas about it. They wanted to improve
> performance, reduce the scope for mistakes, and have a method that
> worked across implementations.

I can understand that, and, if it mainly means different versions of
BIND, that's certainly possible.  If it also means a unified way that
works for multiple different vendors, I personally doubt it's
feasible; I suspect those operators assume some kind of magic happens
in the unified mechanism and gracefully handle differences in config
details amount different vendors' implementations, and would complain
when they realize it doesn't work that way.  So...

> The draft as it stands provides a way to specify config options within
> the zone, but does not specify an explicit list of options. There is no
> enthusiasm among the authors to do so in this draft.

...I'm personally not convinced this proposal will be useful as an
interoperable way to solve the issue (but, of course, it may be a good
idea as an enhancement to BIND) unless you actually address this
point.

That said,

> > this proposal.  (in that sense, I'm curious: is there other DNS
> > developer than ISC that is interested in implementing this proposal?)
>
> So far: I was told that PowerDNS has implemented a plug-in/script that
> provides support for catalog zones.

if there is actually an interest (or better, implementation or
deployment cases) in having an interoperable way of synchronizing
primary/secondary meta info, it may become more convincing.  I'd
suggest you confirming the rumor and including the implementation
status in the draft.

--
JINMEI, Tatuya