IETF Logo Mail Archive

Re: [tae] New draft: announcing the supported transports via DNS

"Dan Wing" <dwing@cisco.com> Tue, 06 October 2009 17:54 UTC

Return-Path: <dwing@cisco.com>
X-Original-To: tae@core3.amsl.com
Delivered-To: tae@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9B3713A69F1 for <tae@core3.amsl.com>; Tue, 6 Oct 2009 10:54:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id y7p9hShYOyk0 for <tae@core3.amsl.com>; Tue, 6 Oct 2009 10:54:16 -0700 (PDT)
Received: from sj-iport-1.cisco.com (sj-iport-1.cisco.com [171.71.176.70]) by core3.amsl.com (Postfix) with ESMTP id CE7483A69A3 for <tae@ietf.org>; Tue, 6 Oct 2009 10:54:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=dwing@cisco.com; l=2879; q=dns/txt; s=sjiport01001; t=1254851744; x=1256061344; h=from:sender:reply-to:subject:date:message-id:to:cc: mime-version:content-transfer-encoding:content-id: content-description:resent-date:resent-from:resent-sender: resent-to:resent-cc:resent-message-id:in-reply-to: references:list-id:list-help:list-unsubscribe: list-subscribe:list-post:list-owner:list-archive; z=From:=20"Dan=20Wing"=20<dwing@cisco.com>|Subject:=20RE: =20[tae]=20New=20draft:=20announcing=20the=20supported=20 transports=20via=20DNS|Date:=20Tue,=206=20Oct=202009=2010 :55:41=20-0700|Message-ID:=20<072201ca46ae$3925e8c0$c2f02 00a@cisco.com>|To:=20"'Joe=20Touch'"=20<touch@ISI.EDU> |Cc:=20<ayourtch@cisco.com>,=20<tae@ietf.org> |MIME-Version:=201.0|Content-Transfer-Encoding:=207bit |In-Reply-To:=20<4ACB758B.909@isi.edu>|References:=20<Pin e.LNX.4.64.0909180057060.5479@zippy.stdio.be>=09<77F0974F -62CD-411C-96D3-C29E6D872DEA@asomi.com>=09<Pine.LNX.4.64. 0910010305520.3645@zippy.stdio.be>=09<4AC60448.2050507@is i.edu><Pine.LNX.4.64.0910050457450.6309@zippy.stdio.be> =20<4AC9F478.6080308@isi.edu>=20<038301ca45e3$aa7ad5b0$c2 f0200a@cisco.com>=20<4ACB758B.909@isi.edu>; bh=PtGmCurN1JkMCEfyDslsNe9D247qAV5WF6BIL27zyBM=; b=JSRh7/zYw5IrKWJHH7CAILcZHTOistGwnNZ5RYB8chozOTpncILR7bCj x3uDaJ5OvkVNDpx4/p4SmtXz4C1m+GqVxYy2pIGcB29RZpCyJjY5pa8D+ Qt8mnAxhxJnlZ7cbDU8uTDEtTNtgaXLVLQoFWJ1kYSGtk6U029TiDz7fZ 4=;
Authentication-Results: sj-iport-1.cisco.com; dkim=pass (partially verified [2848 bytes] [TEST]) header.i=dwing@cisco.com
X-IronPort-AV: E=Sophos;i="4.44,513,1249257600"; d="scan'208";a="251733000"
Received: from sj-dkim-4.cisco.com ([171.71.179.196]) by sj-iport-1.cisco.com with ESMTP; 06 Oct 2009 17:55:44 +0000
Received: from sj-core-5.cisco.com (sj-core-5.cisco.com [171.71.177.238]) by sj-dkim-4.cisco.com (8.12.11/8.12.11) with ESMTP id n96Htik2032005; Tue, 6 Oct 2009 10:55:44 -0700
Received: from xbh-ams-101.cisco.com (xbh-ams-101.cisco.com [144.254.74.71]) by sj-core-5.cisco.com (8.13.8/8.14.3) with ESMTP id n96HtidM022845; Tue, 6 Oct 2009 17:55:44 GMT
Received: from xfe-ams-102.cisco.com ([144.254.231.94]) by xbh-ams-101.cisco.com with Microsoft SMTPSVC(6.0.3790.3959); Tue, 6 Oct 2009 19:55:43 +0200
Received: from dwingwxp01 ([10.21.86.124]) by xfe-ams-102.cisco.com with Microsoft SMTPSVC(6.0.3790.3959); Tue, 6 Oct 2009 19:55:43 +0200
From: Dan Wing <dwing@cisco.com>
To: 'Joe Touch' <touch@ISI.EDU>
References: <Pine.LNX.4.64.0909180057060.5479@zippy.stdio.be> <77F0974F-62CD-411C-96D3-C29E6D872DEA@asomi.com> <Pine.LNX.4.64.0910010305520.3645@zippy.stdio.be> <4AC60448.2050507@isi.edu><Pine.LNX.4.64.0910050457450.6309@zippy.stdio.be> <4AC9F478.6080308@isi.edu> <038301ca45e3$aa7ad5b0$c2f0200a@cisco.com> <4ACB758B.909@isi.edu>
Date: Tue, 06 Oct 2009 10:55:41 -0700
Message-ID: <072201ca46ae$3925e8c0$c2f0200a@cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
Thread-Index: AcpGpWWBM2c9boCfSBKCI+hbRTMk5QACBJWw
In-Reply-To: <4ACB758B.909@isi.edu>
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3350
X-OriginalArrivalTime: 06 Oct 2009 17:55:43.0333 (UTC) FILETIME=[3950C950:01CA46AE]
X-TM-AS-Product-Ver: SMEX-8.0.0.1181-5.600.1016-16930.003
X-TM-AS-Result: No--30.884900-8.000000-31
X-TM-AS-User-Approved-Sender: No
X-TM-AS-User-Blocked-Sender: No
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=2848; t=1254851744; x=1255715744; c=relaxed/simple; s=sjdkim4002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=dwing@cisco.com; z=From:=20=22Dan=20Wing=22=20<dwing@cisco.com> |Subject:=20RE=3A=20[tae]=20New=20draft=3A=20announcing=20t he=20supported=20transports=20via=20DNS |Sender:=20; bh=E9Ica54bmRYvHBgVVsCi0e4d1aJVJDeWr89II7xCdzo=; b=fQGHdtmHYDEQQicaIVQpSatBuatznD0QYFo7Jn9pt2/U1SakCUji4lcIGV 80xkM0btPId2Mulf/r+ktMlWNVEYP3mdQcm8EQYo4VkDGU0XHOam/WJ45PNz 9J4+u3s1bw;
Cc: tae@ietf.org
Subject: Re: [tae] New draft: announcing the supported transports via DNS
X-BeenThere: tae@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Transport Architecture Evolution <tae.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tae>, <mailto:tae-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tae>
List-Post: <mailto:tae@ietf.org>
List-Help: <mailto:tae-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tae>, <mailto:tae-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Oct 2009 17:54:17 -0000

 

> -----Original Message-----
> From: Joe Touch [mailto:touch@ISI.EDU] 
> Sent: Tuesday, October 06, 2009 9:51 AM
> To: Dan Wing
> Cc: ayourtch@cisco.com; tae@ietf.org
> Subject: Re: [tae] New draft: announcing the supported 
> transports via DNS
> 
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> ...
> >> > There are numerous applications that use reverse DNS for 
> verification,
> >> > e.g., HTTP name-based access, SSL, etc. Users don't have 
> control over
> >> > reverse DNS.
> > 
> > Agreed.
> > 
> > But how is reverse DNS authentication relevant to selection of 
> > a transport protocol?
> 
> If all you have is an IP address (whether the user types it 
> in or it is
> provided in-band), the only thing you can lookup in the DNS 
> (to find the
> supported transports for that address) is reverse DNS.

Our proposal, draft-yourtchenko-tran-announce-dns-00, does
not suggest looking up PTR records.

We're trying to optimize the Happy Eyeballs probing
(draft-wing-http-new-tech-00) for the 99.65% of websites
that have DNS names.  99.65% comes from Alexa's list of
top 1,000,000 websites; 3455 of them are IPv4 address
literals.

-d

> ...
> >> > First, the DNS is not always available or desirable.
> >> > 
> >> > Second, if you solve this for the DNS, you can use a 
> similar solution
> >> > directly between the endpoints without involving the DNS.
> >> >
> >> > Third, if you force all endpoints to support a default 
> >> > transport to talk
> >> > to the DNS, you have a default transport to talk to all other 
> >> > endpoints anyway.
> > 
> > I sure would like to see your straw man proposal, because I
> > cannot fathom how you would accomplish this feat.
> 
> First, I don't need to provide a strawman to express concerns with an
> existing proposal. We aren't picking a place for lunch*.
> 
> Second, I'm basically suggesting that this all boils down to the need
> for a transport negotiation protocol between the endpoints. There are
> numerous challenges to designing an effective negotiation protocol:
> 
> 	- latency to detect supported protocols
> 	- latency to fallback if not supported
> 	- interaction with NATs/firewalls
> 
> Just saying "use the DNS" doesn't solve these problems any better than
> "build a new exchange protocol", and adds other problems:
> 
> 	- support for non-DNS endpoints (IP address specified)
> 	- involvement of a third party (lack of fate-sharing)
> 
> Joe
> 
> *(typical lunch location negotiation rules are "if you shoot down a
> proposed site, you must counter with an alternative you are willing to
> accept")
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (MingW32)
> 
> iEYEARECAAYFAkrLdYsACgkQE5f5cImnZrvsjwCg5P6SGGzdxBwr2FtPr2aSPS/k
> Fa0AnjEmKD99tDni7QysjTpPDAeC/B4Z
> =+SUt
> -----END PGP SIGNATURE-----

v2.23.0 | Report a Bug | By Email