[dnssd] Solicit feedback for the DNS behavior for workloads hosted in Cloud DCs described in draft-ietf-rtgwg-net2cloud-problem-statement
Linda Dunbar <linda.dunbar@futurewei.com> Wed, 25 January 2023 16:05 UTC
Return-Path: <linda.dunbar@futurewei.com>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 637C1C151719; Wed, 25 Jan 2023 08:05:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UrruUbMZ20Oi; Wed, 25 Jan 2023 08:05:01 -0800 (PST)
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (mail-dm6nam10on2099.outbound.protection.outlook.com [40.107.93.99]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 59C9DC15152C; Wed, 25 Jan 2023 08:05:01 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=TbJI5oN3vDR+y2TTAWPrWm5JulMSwZZ1TsbfzbiWojLwphvQsDbCAB3WnHDoYF+v9iR4+9mQhi6Hy3RGqGM5XEfiNzBjIrrYsLpnKyUEbR2/K97jS98ZN1FPtRc6b5wyCdWuJUUWSSCc7h8CjBj4eTnTduWxfkuz0DD627HrgL4LqPoRArGNzMSQIB7SntYDwAIEZ4Z1axp7L67b1RdP9/x9lTLxcteAkwFPDqK+bgiD+zwAjkizRPHwFP7+rAnEYVOTRRjXfiY1ykpYb2EAJzeXvUPS9q0u7Lec0dUcFyrH2G8xZk23PTkqF8YNNSSzKBGrAVHYbZpQI7ylfv4bHg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=FtMN0AEqY7dKFhDC55dhU9XZHFbLbVniS2DOGquqIic=; b=ie9w3A/9rCv0LqQBFOnnYGtbcErgmQWhQLXiGDfwFBDkI9PAoFhossUS6C1ZnxRnvDDWHZMLb/ZfeFC75Rh8XP7aW9mu4JsRBtPdXDYNrm0D+q9WC9pqO3CyAMJlb2DeTlDp45abrbpcsUCDk5tH131fPvelLp1WVE1dYExKnR4ZHFpwYGdrtRRWV+sp6CG0+kbNCcjF93A1DgSCkkzaE/KNsr3Yk3gAjIHC84WZMJuSuZBkn+8WVYignSIY7C2Q8Bn02Z+V361Zcqs/xLoVs7HKwJ5K/E5wetwghJ3YHPISsGbtJagU7WVv6n9ueD8LCso2fgzUlecrNdBD1EdvnA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=FtMN0AEqY7dKFhDC55dhU9XZHFbLbVniS2DOGquqIic=; b=DGMQeQTExwlAvMMDfqR0CGdydFHyGkln6bu9dPpuXAKBQGOTCGDp+hw+tCV0w/PrzvrBdzF7aV3fIYZL3J09avHxdN2I/wRl6uhsyrtEmWll0Iucn1VIktbcmyRPN+jjb6HwBdd7YEpbhGKzEZg+9DwQumZRsyiCRscrsIReCTE=
Received: from CO1PR13MB4920.namprd13.prod.outlook.com (2603:10b6:303:f7::17) by DM8PR13MB5205.namprd13.prod.outlook.com (2603:10b6:8:e::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6002.33; Wed, 25 Jan 2023 16:04:58 +0000
Received: from CO1PR13MB4920.namprd13.prod.outlook.com ([fe80::d7f0:e736:a3bb:ec9d]) by CO1PR13MB4920.namprd13.prod.outlook.com ([fe80::d7f0:e736:a3bb:ec9d%9]) with mapi id 15.20.6002.033; Wed, 25 Jan 2023 16:04:58 +0000
From: Linda Dunbar <linda.dunbar@futurewei.com>
To: "rtgwg@ietf.org" <rtgwg@ietf.org>, "dnsop@ietf.org" <dnsop@ietf.org>, "dnssd@ietf.org" <dnssd@ietf.org>
Thread-Topic: Solicit feedback for the DNS behavior for workloads hosted in Cloud DCs described in draft-ietf-rtgwg-net2cloud-problem-statement
Thread-Index: Adkw1iC4mt+j5VlVQsut7d4yC8HsMA==
Date: Wed, 25 Jan 2023 16:04:58 +0000
Message-ID: <CO1PR13MB49205414F4D43B26111F3FAC85CE9@CO1PR13MB4920.namprd13.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=futurewei.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CO1PR13MB4920:EE_|DM8PR13MB5205:EE_
x-ms-office365-filtering-correlation-id: e86c6491-fa3f-47fe-2f00-08dafeede82b
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR13MB4920.namprd13.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230025)(4636009)(39840400004)(136003)(366004)(376002)(346002)(396003)(451199018)(66476007)(71200400001)(76116006)(64756008)(316002)(86362001)(66946007)(44832011)(38070700005)(5660300002)(9686003)(166002)(52536014)(2906002)(41300700001)(38100700002)(8936002)(122000001)(186003)(6506007)(26005)(8676002)(55016003)(110136005)(66446008)(450100002)(66556008)(478600001)(33656002)(7696005)(966005)(71440200002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_CO1PR13MB49205414F4D43B26111F3FAC85CE9CO1PR13MB4920namp_"
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR13MB4920.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e86c6491-fa3f-47fe-2f00-08dafeede82b
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jan 2023 16:04:58.1570 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 7XOD0z1QTZtAYW/GN9cBcgGXh1Bbio4axj2E3nZIoU/u2Fn9taTA5dnLVgWipc4lB6PVf4FO91ksTCRVZVsvcw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM8PR13MB5205
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnssd/Hus3FpncaCDV4_7FCC6DReoAx8M>
Subject: [dnssd] Solicit feedback for the DNS behavior for workloads hosted in Cloud DCs described in draft-ietf-rtgwg-net2cloud-problem-statement
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Discussion of extensions to DNS-based service discovery for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Jan 2023 16:05:05 -0000
DNS experts: Section 3.6 of https://datatracker.ietf.org/doc/draft-ietf-rtgwg-net2cloud-problem-statement/ describes the DNS resolution behavior of enterprises' workloads hosted in Cloud DCs. We really appreciate your feedback to this description. ---------- 3.6 DNS Practices for Hybrid Workloads DNS name resolution is essential for on-premises and cloud-based resources. For customers with hybrid workloads, which include on-premises and cloud-based resources, extra steps are necessary to configure DNS to work seamlessly across both environments. Cloud operators have their own DNS to resolve resources within their Cloud DCs and to well-known public domains. Cloud's DNS can be configured to forward queries to customer managed authoritative DNS servers hosted on-premises and to respond to DNS queries forwarded by on-premises DNS servers. For enterprises utilizing Cloud services by different cloud operators, it is necessary to establish policies and rules on how/where to forward DNS queries. When applications in one Cloud need to communicate with applications hosted in another Cloud, there could be DNS queries from one Cloud DC being forwarded to the enterprises' on-premises DNS, which in turn be forwarded to the DNS service in another Cloud. Configuration can be complex depending on the application communication patterns. However, even with carefully managed policies and configurations, collisions can still occur. If you use an internal name like .cloud and then want your services to be available via or within some other cloud provider which also uses .cloud, then collisions might occur. Therefore, it is better to use the global domain name even when an organization does not make all its namespace globally resolvable. An organization's globally unique DNS can include subdomains that cannot be resolved outside certain restricted paths, zones that resolve differently based on the origin of the query, and zones that resolve the same globally for all queries from any source. Globally unique names do not equate to globally resolvable names or even global names that resolve the same way from every perspective. Globally unique names can prevent any possibility of collisions at present or in the future, and they make DNSSEC trust manageable. Consider using a registered and fully qualified domain name (FQDN) from global DNS as the root for enterprise and other internal namespaces. Thank you very much Linda Dunbar
- [dnssd] Solicit feedback for the DNS behavior for… Linda Dunbar
- Re: [dnssd] Solicit feedback for the DNS behavior… Michael Richardson
- Re: [dnssd] [DNSOP] Solicit feedback for the DNS … Petr Špaček
- Re: [dnssd] Solicit feedback for the DNS behavior… Linda Dunbar