Re: [homenet] Genart last call review of draft-ietf-homenet-dot-12
Mark Andrews <marka@isc.org> Wed, 30 August 2017 06:57 UTC
Return-Path: <marka@isc.org>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7720413239E; Tue, 29 Aug 2017 23:57:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.9
X-Spam-Level:
X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, PP_MIME_FAKE_ASCII_TEXT=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WPWnAnWIFYFd; Tue, 29 Aug 2017 23:57:05 -0700 (PDT)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [149.20.64.53]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E96A813238E; Tue, 29 Aug 2017 23:57:04 -0700 (PDT)
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.pao1.isc.org (Postfix) with ESMTPS id E629634A5C0; Wed, 30 Aug 2017 06:56:15 +0000 (UTC)
Received: from zmx1.isc.org (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTPS id D0D85160044; Wed, 30 Aug 2017 06:56:15 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id B9F1F160045; Wed, 30 Aug 2017 06:56:15 +0000 (UTC)
Received: from zmx1.isc.org ([127.0.0.1]) by localhost (zmx1.isc.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 9cyB5tN30us1; Wed, 30 Aug 2017 06:56:15 +0000 (UTC)
Received: from rock.dv.isc.org (c27-253-115-14.carlnfd2.nsw.optusnet.com.au [27.253.115.14]) by zmx1.isc.org (Postfix) with ESMTPSA id 69D05160044; Wed, 30 Aug 2017 06:56:15 +0000 (UTC)
Received: from rock.dv.isc.org (localhost [IPv6:::1]) by rock.dv.isc.org (Postfix) with ESMTP id 0370C83A30AE; Wed, 30 Aug 2017 16:56:13 +1000 (AEST)
To: Ted Lemon <mellon@fugue.com>
Cc: Dale Worley <worley@ariadne.com>, draft-ietf-homenet-dot.all@ietf.org, General area reviewing team <gen-art@ietf.org>, HOMENET <homenet@ietf.org>
From: Mark Andrews <marka@isc.org>
References: <150357360963.24287.5193275103043411365@ietfa.amsl.com> <4B072264-2824-4433-A24D-DF5D2FD5A085@fugue.com>
In-reply-to: Your message of "Tue, 29 Aug 2017 19:25:44 -0400." <4B072264-2824-4433-A24D-DF5D2FD5A085@fugue.com>
Date: Wed, 30 Aug 2017 16:56:13 +1000
Message-Id: <20170830065613.0370C83A30AE@rock.dv.isc.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/homenet/PlK0EMOxPwcdiSZwZZWfJzh0X30>
Subject: Re: [homenet] Genart last call review of draft-ietf-homenet-dot-12
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF Homenet WG mailing list <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Aug 2017 06:57:06 -0000
In message <4B072264-2824-4433-A24D-DF5D2FD5A085@fugue.com>, Ted Lemon writes: > El Aug 24, 2017, a les 7:20 AM, Dale Worley <worley@ariadne.com> va > escriure: > > 4. Domain Name Reservation Considerations > > > > 3. Name resolution APIs MUST send queries for such > > names to a recursive DNS server that is configured to be > > authoritative for the 'home.arpa.' zone appropriate to the > > homenet. > > > > If I understand the terminology correctly, this rules out sending the > > query to a DNS server that recursively sends the query to a server > > that is authoritative for home.arpa. If that is intended and there > > are technical reasons for making this prescription, that's OK, but I > > want to check that that is intended, as this rule is stricter than the > > similar rule in the second paragraph of item 4, which is qualified > > "Unless configured otherwise". > > Wow. The text here is just flat wrong: recursive name servers aren't > authoritative. You can of course combine them, but this text doesn't > agree with some other text later in the document. What the text is > supposed to be saying is that the stub resolver has to use the recursive > resolver that was provided by the network; if it uses a manually > configured resolver, it may get the wrong answer. I will have to rework > this textâthanks so much for calling this to my attention, even though > what you noticed isn't exactly what's wrong! :) > > As for the discrepancy itself, the reason for this is that recursive > resolvers are supposed to stop home.arpa queries leaking to the root, > whereas stub resolvers can (must!) fob that responsibility off on the > recursive resolver. If they are configured to send these queries to, > e.g., 8.8.8.8, we just have to hope that google doesn't forward them to > the root (as would be consistent with the text in item 4). Or the recursive server has learnt that 8.8.8.8 is "special" and is the equivalent of the root servers in terms of keeping local traffic local. Maintaining the list of don't leak too recursive servers is a "interesting" problem. Mark -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: marka@isc.org
- [homenet] Genart last call review of draft-ietf-h… Dale Worley
- Re: [homenet] Genart last call review of draft-ie… Ted Lemon
- Re: [homenet] Genart last call review of draft-ie… Mark Andrews
- Re: [homenet] Genart last call review of draft-ie… Dale R. Worley
- Re: [homenet] Genart last call review of draft-ie… Ted Lemon