IETF Logo Mail Archive

Re: [tae] The internet architecture

"Hallam-Baker, Phillip" <pbaker@verisign.com> Thu, 04 December 2008 22:11 UTC

Return-Path: <tae-bounces@ietf.org>
X-Original-To: tae-archive@ietf.org
Delivered-To: ietfarch-tae-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4C65528C151; Thu, 4 Dec 2008 14:11:49 -0800 (PST)
X-Original-To: tae@core3.amsl.com
Delivered-To: tae@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5DAAA3A6AFE; Thu, 4 Dec 2008 13:37:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.575
X-Spam-Level:
X-Spam-Status: No, score=-5.575 tagged_above=-999 required=5 tests=[AWL=-0.373, BAYES_00=-2.599, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=1.396, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J0qC47gG9GOo; Thu, 4 Dec 2008 13:37:57 -0800 (PST)
Received: from colibri.verisign.com (colibri.verisign.com [65.205.251.74]) by core3.amsl.com (Postfix) with ESMTP id 727EE3A6A64; Thu, 4 Dec 2008 13:37:57 -0800 (PST)
Received: from MOU1WNEXCN03.vcorp.ad.vrsn.com (mailer6.verisign.com [65.205.251.33]) by colibri.verisign.com (8.13.6/8.13.4) with ESMTP id mB4LGqg6015161; Thu, 4 Dec 2008 13:16:52 -0800
Received: from MOU1WNEXMB09.vcorp.ad.vrsn.com ([10.25.15.197]) by MOU1WNEXCN03.vcorp.ad.vrsn.com with Microsoft SMTPSVC(6.0.3790.3959); Thu, 4 Dec 2008 13:37:47 -0800
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Date: Thu, 4 Dec 2008 13:37:46 -0800
Message-ID: <2788466ED3E31C418E9ACC5C316615572FFBF3@mou1wnexmb09.vcorp.ad.vrsn.com>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: The internet architecture
Thread-Index: AclWV3geYx3dO7rhRbSm60HfiOFVTgAACUQT
References: <C15AE32B-E564-4C93-86FF-40EF203E673A@mpi-sws.org> <49382030.5020704@network-heretics.com> <2788466ED3E31C418E9ACC5C316615572FFBEF@mou1wnexmb09.vcorp.ad.vrsn.com> <49384BCF.2080600@network-heretics.com>
From: "Hallam-Baker, Phillip" <pbaker@verisign.com>
To: "Keith Moore" <moore@network-heretics.com>
X-OriginalArrivalTime: 04 Dec 2008 21:37:47.0689 (UTC) FILETIME=[8CD8A990:01C95658]
X-Mailman-Approved-At: Thu, 04 Dec 2008 14:11:47 -0800
Cc: tae@ietf.org, ietf@ietf.org, Bryan Ford <brynosaurus@gmail.com>
Subject: Re: [tae] The internet architecture
X-BeenThere: tae@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Transport Architecture Evolution <tae.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tae>, <mailto:tae-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/tae>
List-Post: <mailto:tae@ietf.org>
List-Help: <mailto:tae-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tae>, <mailto:tae-request@ietf.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============0991504683=="
Sender: tae-bounces@ietf.org
Errors-To: tae-bounces@ietf.org

You are wrong.
 
Take SMTP email. Imagine that a company has three mail servers at geographically dispersed locations with independent network connections. With MX records a local failure of IP connectivity does not need to mean total failure of IP connectivity.
 
In fact provided that core DNS is there, and BGP is not borked it is possible to contingency plan for pretty much any outage that does not result in a virtually complete loss of connectivity at the client end.
 
 
A chain is only as strong as its weakest link. The Internet is not a chain, it is a mesh. A mesh is stronger than the weakest link.

________________________________

From: Keith Moore [mailto:moore@network-heretics.com]
Sent: Thu 12/4/2008 4:29 PM
To: Hallam-Baker, Phillip
Cc: Bryan Ford; tae@ietf.org; ietf@ietf.org
Subject: Re: The internet architecture



Hallam-Baker, Phillip wrote:
> I am trying to parse this claim.
>
> Are you saying that the DNS is fragile and raw IP relatively robust?

DNS is layered on top of IP.  So for a large class of IP failures, DNS
won't work either.  And if IP routing fails, DNS is likely to be
irrelevant because the application using DNS won't work anyway.

And in practice, DNS is quite likely to fail due to configuration
errors, inadequate provisioning, outdated cache entries due to
unanticipated changes, brain-damaged DNS caches built into NATs, failure
of registries to transfer a DNS name in a timely fashion, etc.

So it's not a question of whether DNS is less reliable than IP (it is),
or even whether the reliability of DNS + IP is less than that of IP
alone (it is).  It's a question of whether increasing reliance on DNS by
trying to get apps and other things to use DNS names exclusively, makes
those apps and other things less reliable.  And I'd argue that it does,
except perhaps in a world where renumbering happened frequently, at
irregular intervals, and without notice.  And I don't think that's a
realistic scenario.

Keith



_______________________________________________
tae mailing list
tae@ietf.org
https://www.ietf.org/mailman/listinfo/tae

v2.8.7 | Report a Bug | By Email