[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol

To: David Conrad <drc at virtualized.org>
Subject: Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol
From: Matthew Dempsky <matthew at dempsky.org>
Date: Wed, 4 Nov 2009 13:45:16 -0800
Cc: dnsop WG <dnsop at ietf.org>
Delivered-to: dnsop at core3.amsl.com
In-reply-to: <8643905B-B73B-4D87-A1CE-F218E4BA9FD4 at virtualized.org>
List-archive: <http://www.ietf.org/mail-archive/web/dnsop>
List-help: <mailto:dnsop-request@ietf.org?subject=help>
List-id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-post: <mailto:dnsop@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
References: <200911041858.TAA24009 at TR-Sys.de> <FD44BF39-5B62-4689-AC6D-8DFFAF340EA1 at icsi.berkeley.edu> <20091104192634.GA31981 at vacation.karoshi.com.> <d791b8790911041141k71066fa9nede54d5dff9394fa at mail.gmail.com> <8643905B-B73B-4D87-A1CE-F218E4BA9FD4 at virtualized.org>

On Wed, Nov 4, 2009 at 12:04 PM, David Conrad <drc at virtualized.org> wrote:
> On Nov 4, 2009, at 11:41 AM, Matthew Dempsky wrote:
>> On Wed, Nov 4, 2009 at 11:26 AM,  <bmanning at vacation.karoshi.com> wrote:
>>>        The current deployment plan is to stage things to push out large responses
>>>        early - prior to having any actual DNSSEC usable data ... ostensibly to
>>>        flush out DNSmtu problems.
>>
>> Is this plan to push out large responses indiscriminately, or only in
>> response to queries with DO=1?
>
> We're not planning on breaking the DNS protocol.  DNSSEC responses will only be provided if DO=1 (currently about 70% of the queries hitting the root have DO=1).

I'd appreciate if someone could clarify what the "large responses"
that will preexist "actual DNSSEC usable data" that Bill Manning is
referring to are.  It's unclear to me whether it's still technically
DNSSEC data and hence would require a client to send DO=1, or if it
will be something like large additional section TXT records or just
trailing bytes.

Follow-Ups:
- Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol
  - From: David Conrad
- Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol
  - From: Jay Daley

References:
- [DNSOP] Computerworld apparently has changed DNS protocol
  - From: Alfred Hönes
- Re: [DNSOP] Computerworld apparently has changed DNS protocol
  - From: Nicholas Weaver
- Re: [DNSOP] Computerworld apparently has changed DNS protocol
  - From: bmanning
- Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol
  - From: Matthew Dempsky
- Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol
  - From: David Conrad

Prev by Date: Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol
Next by Date: Re: [DNSOP] Computerworld apparently has changed DNS protocol
Previous by thread: Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol
Next by thread: Re: [DNSOP] [dnsext] Re: Computerworld apparently has changed DNS protocol
Index(es):
- Date
- Thread