"DNS Zone Transfer Protocol (AXFR)", Edward Lewis, 30-Mar-09. ( bytes): The Domain Name System standard mechanisms for maintaining coherent servers for a zone consist of three elements. One mechanism is the Authoritative Transfer (AXFR) is defined in RFC 1034 and RFC 1035. The definition of AXFR, has proven insufficient in detail, forcing implementations intended to be compliant to make assumptions, impeding interoperability. Yet today we have a satisfactory set of implementations that do interoperate. This document is a new definition of the AXFR, new in the sense that is it recording an accurate definition of an interoperable AXFR mechanism.
"Use of SHA-2 algorithms with RSA in DNSKEY and RRSIG Resource Records for DNSSEC", Jelte Jansen, 4-Jun-09. ( bytes): This document describes how to produce RSA/SHA-256 and RSA/SHA-512 DNSKEY and RRSIG resource records for use in the Domain Name System Security Extensions (DNSSEC, RFC 4033, RFC 4034, and RFC 4035).
"Update to DNAME Redirection in the DNS", Scott Rose, Wouter Wijngaards, 29-Jun-09. ( bytes): The DNAME record provides redirection for a sub-tree of the domain name tree in the DNS system. That is, all names that end with a particular suffix are redirected to another part of the DNS. This is a revision of the original specification in RFC 2672, also aligning RFC 3363 and RFC 4294 with this revision.
"Extension Mechanisms for DNS (EDNS0)", Michael Graff, Paul Vixie, 28-Jul-09. ( bytes): The Domain Name System's wire protocol includes a number of fixed fields whose range has been or soon will be exhausted and does not allow requestors to advertise their capabilities to responders. This document describes backward compatible mechanisms for allowing the protocol to grow. This document updates the EDNS0 specification based on 10 years of operational experience.
"Deprecation of HMAC-MD5 in DNS TSIG and TKEY Resource Records", Francis Dupont, 8-May-09. ( bytes): The main purpose of this document is to deprecate the use of HMAC-MD5 as an algorithm for the TSIG (secret key transaction authentication) resource record in the DNS (domain name system), and the use of MD5 in TKEY (secret key establishment for DNS).
"DNS Proxy Implementation Guidelines", Ray Bellis, 2-Jul-09. ( bytes): This document provides guidelines for the implementation of DNS proxies, as found in broadband gateways and other similar network devices.

IETF Secretariat - Please send questions, comments, and/or suggestions to ietf-web@ietf.org.

Return to Internet-Draft directory.

Return to IETF home page.