IETF Logo Mail Archive

Re: [dnsext] RFC 3484 section 6 rule 9 causing more operational problems

Ondřej Surý <ondrej.sury@nic.cz> Wed, 04 March 2009 16:05 UTC

Return-Path: <ondrej.sury@nic.cz>
X-Original-To: ietf@core3.amsl.com
Delivered-To: ietf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A396328C3C5 for <ietf@core3.amsl.com>; Wed, 4 Mar 2009 08:05:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.185
X-Spam-Level:
X-Spam-Status: No, score=-0.185 tagged_above=-999 required=5 tests=[AWL=0.891, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, J_CHICKENPOX_23=0.6, MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AF6FvQZwaK1e for <ietf@core3.amsl.com>; Wed, 4 Mar 2009 08:05:04 -0800 (PST)
Received: from mail-fx0-f176.google.com (mail-fx0-f176.google.com [209.85.220.176]) by core3.amsl.com (Postfix) with ESMTP id 8392E28C396 for <ietf@ietf.org>; Wed, 4 Mar 2009 08:05:02 -0800 (PST)
Received: by fxm24 with SMTP id 24so2964640fxm.37 for <ietf@ietf.org>; Wed, 04 Mar 2009 08:05:30 -0800 (PST)
MIME-Version: 1.0
Received: by 10.223.107.199 with SMTP id c7mr38835fap.31.1236182730037; Wed, 04 Mar 2009 08:05:30 -0800 (PST)
In-Reply-To: <20563.1236179832@nsa.vix.com>
References: <alpine.LSU.2.00.0903041400220.8701@hermes-2.csi.cam.ac.uk> <20563.1236179832@nsa.vix.com>
Date: Wed, 04 Mar 2009 17:05:29 +0100
Message-ID: <e90946380903040805v15ad9e7dv92491667cd1f7656@mail.gmail.com>
Subject: Re: [dnsext] RFC 3484 section 6 rule 9 causing more operational problems
From: Ondřej Surý <ondrej.sury@nic.cz>
To: Paul Vixie <vixie@isc.org>
Content-Type: multipart/alternative; boundary="001636c5b84d805ae904644d3848"
X-Mailman-Approved-At: Wed, 04 Mar 2009 09:26:08 -0800
Cc: namedroppers@ops.ietf.org, ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Mar 2009 16:05:05 -0000

On Wed, Mar 4, 2009 at 4:17 PM, Paul Vixie <vixie@isc.org> wrote:

> dns-based load balancing is an unfortunate overloading and
> should never be done.


Here I agree.


> RFC 3484 is correct as it is.


Here I don't. The idea behind is good, the implementation is not.
Client would have to know BGP path to DA + DB and decide on
basis of routing protocol. Selection based on longest matching
prefix will work in only very small percent of case, all other cases
are based on pure luck.

Ondrej.


> > It seems that Vista implements RFC 3484 address selection, including the
> > requirement to sort IP addresses. This breaks a great deal of operational
> > dependence on DNS-based load balancing, as well as being based on an
> > incorrect understanding of how IP addresses are allocated.
> >
> > RFC 3484 needs to be updated to delete this rule, so that the order
> > returned from the DNS is honoured when the client has no better knowledge
> > about which address is appropriate.
> >
> > See
> > http://drplokta.livejournal.com/109267.html
> > http://www.ietf.org/mail-archive/web/ietf/current/msg51874.html
> > http://www.ietf.org/mail-archive/web/discuss/current/msg01035.html
> > http://www.ietf.org/mail-archive/web/dnsop/current/msg05847.html
> > http://lists.debian.org/debian-ctte/2007/11/msg00029.html
> >
> > Tony.
> > --
> > f.anthony.n.finch  <dot@dotat.at>  http://dotat.at/
> > GERMAN BIGHT HUMBER: SOUTHWEST 5 TO 7. MODERATE OR ROUGH. SQUALLY
> SHOWERS.
> > MODERATE OR GOOD.
> >
> > --
> > to unsubscribe send a message to namedroppers-request@ops.ietf.org with
> > the word 'unsubscribe' in a single line as the message text body.
> > archive: <http://ops.ietf.org/lists/namedroppers/>
>
> --
> to unsubscribe send a message to namedroppers-request@ops.ietf.org with
> the word 'unsubscribe' in a single line as the message text body.
> archive: <http://ops.ietf.org/lists/namedroppers/>
>



-- 
Ondrej Sury
technicky reditel/Chief Technical Officer
-----------------------------------------
CZ.NIC, z.s.p.o.  --  .cz domain registry
Americka 23,120 00 Praha 2,Czech Republic
mailto:ondrej.sury@nic.cz  http://nic.cz/
sip:ondrej.sury@nic.cz <sip%3Aondrej.sury@nic.cz> tel:+420.222745110
mob:+420.739013699     fax:+420.222745112
-----------------------------------------

v2.23.0 | Report a Bug | By Email