| < draft-ietf-dnsop-as112-dname-02.txt | draft-ietf-dnsop-as112-dname-03.txt > | |||
|---|---|---|---|---|
| Network Working Group J. Abley | Network Working Group J. Abley | |||
| Internet-Draft Dyn, Inc. | Internet-Draft Dyn, Inc. | |||
| Updates: 6304 (if approved) B. Dickson | Intended status: Informational B. Dickson | |||
| Intended status: Informational Verisign Labs | Expires: September 20, 2014 Verisign Labs | |||
| Expires: August 18, 2014 W. Kumari | W. Kumari | |||
| G. Michaelson | G. Michaelson | |||
| APNIC | APNIC | |||
| February 14, 2014 | March 19, 2014 | |||
| AS112 Redirection using DNAME | AS112 Redirection using DNAME | |||
| draft-ietf-dnsop-as112-dname-02 | draft-ietf-dnsop-as112-dname-03 | |||
| Abstract | Abstract | |||
| Many sites connected to the Internet make use of IPv4 addresses that | Many sites connected to the Internet make use of IPv4 addresses that | |||
| are not globally unique. Examples are the addresses designated in | are not globally unique. Examples are the addresses designated in | |||
| RFC 1918 for private use within individual sites. | RFC 1918 for private use within individual sites. | |||
| Devices in such environments may occasionally originate Domain Name | Devices in such environments may occasionally originate Domain Name | |||
| System (DNS) queries (so-called "reverse lookups") corresponding to | System (DNS) queries (so-called "reverse lookups") corresponding to | |||
| those private-use addresses. Since the addresses concerned have only | those private-use addresses. Since the addresses concerned have only | |||
| skipping to change at page 2, line 15 ¶ | skipping to change at page 2, line 15 ¶ | |||
| Internet-Drafts are working documents of the Internet Engineering | Internet-Drafts are working documents of the Internet Engineering | |||
| Task Force (IETF). Note that other groups may also distribute | Task Force (IETF). Note that other groups may also distribute | |||
| working documents as Internet-Drafts. The list of current Internet- | working documents as Internet-Drafts. The list of current Internet- | |||
| Drafts is at http://datatracker.ietf.org/drafts/current/. | Drafts is at http://datatracker.ietf.org/drafts/current/. | |||
| Internet-Drafts are draft documents valid for a maximum of six months | Internet-Drafts are draft documents valid for a maximum of six months | |||
| and may be updated, replaced, or obsoleted by other documents at any | and may be updated, replaced, or obsoleted by other documents at any | |||
| time. It is inappropriate to use Internet-Drafts as reference | time. It is inappropriate to use Internet-Drafts as reference | |||
| material or to cite them other than as "work in progress." | material or to cite them other than as "work in progress." | |||
| This Internet-Draft will expire on August 18, 2014. | This Internet-Draft will expire on September 20, 2014. | |||
| Copyright Notice | Copyright Notice | |||
| Copyright (c) 2014 IETF Trust and the persons identified as the | Copyright (c) 2014 IETF Trust and the persons identified as the | |||
| document authors. All rights reserved. | document authors. All rights reserved. | |||
| This document is subject to BCP 78 and the IETF Trust's Legal | This document is subject to BCP 78 and the IETF Trust's Legal | |||
| Provisions Relating to IETF Documents | Provisions Relating to IETF Documents | |||
| (http://trustee.ietf.org/license-info) in effect on the date of | (http://trustee.ietf.org/license-info) in effect on the date of | |||
| publication of this document. Please review these documents | publication of this document. Please review these documents | |||
| skipping to change at page 3, line 25 ¶ | skipping to change at page 3, line 25 ¶ | |||
| 7. IAB Considerations . . . . . . . . . . . . . . . . . . . . . . 11 | 7. IAB Considerations . . . . . . . . . . . . . . . . . . . . . . 11 | |||
| 8. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 12 | 8. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 12 | |||
| 8.1. Address Assignment . . . . . . . . . . . . . . . . . . . . 12 | 8.1. Address Assignment . . . . . . . . . . . . . . . . . . . . 12 | |||
| 8.2. Hosting of AS112.ARPA . . . . . . . . . . . . . . . . . . 13 | 8.2. Hosting of AS112.ARPA . . . . . . . . . . . . . . . . . . 13 | |||
| 8.3. Delegation of AS112.ARPA . . . . . . . . . . . . . . . . . 14 | 8.3. Delegation of AS112.ARPA . . . . . . . . . . . . . . . . . 14 | |||
| 9. Security Considerations . . . . . . . . . . . . . . . . . . . 15 | 9. Security Considerations . . . . . . . . . . . . . . . . . . . 15 | |||
| 10. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 16 | 10. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 16 | |||
| 11. References . . . . . . . . . . . . . . . . . . . . . . . . . . 17 | 11. References . . . . . . . . . . . . . . . . . . . . . . . . . . 17 | |||
| 11.1. Normative References . . . . . . . . . . . . . . . . . . . 17 | 11.1. Normative References . . . . . . . . . . . . . . . . . . . 17 | |||
| 11.2. Informative References . . . . . . . . . . . . . . . . . . 17 | 11.2. Informative References . . . . . . . . . . . . . . . . . . 17 | |||
| Appendix A. Assessing Support for DNAME in the Real World . . . . 19 | Appendix A. Assessing Support for DNAME in the Real World . . . . 18 | |||
| A.1. Methodology . . . . . . . . . . . . . . . . . . . . . . . 19 | A.1. Methodology . . . . . . . . . . . . . . . . . . . . . . . 18 | |||
| A.2. Results . . . . . . . . . . . . . . . . . . . . . . . . . 21 | A.2. Results . . . . . . . . . . . . . . . . . . . . . . . . . 20 | |||
| Appendix B. Editorial Notes . . . . . . . . . . . . . . . . . . . 22 | Appendix B. Editorial Notes . . . . . . . . . . . . . . . . . . . 21 | |||
| B.1. Change History . . . . . . . . . . . . . . . . . . . . . . 22 | B.1. Change History . . . . . . . . . . . . . . . . . . . . . . 21 | |||
| Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 23 | Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 22 | |||
| 1. Introduction | 1. Introduction | |||
| The AS112 project is described in detail in [RFC6304]. | The AS112 project is described in detail in [RFC6304bis]. | |||
| The AS112 nameservers (PRISONER.IANA.ORG, BLACKHOLE-1.IANA.ORG and | The AS112 nameservers (PRISONER.IANA.ORG, BLACKHOLE-1.IANA.ORG and | |||
| BLACKHOLE-2.IANA.ORG) are required to answer authoritatively for each | BLACKHOLE-2.IANA.ORG) are required to answer authoritatively for each | |||
| and every zone that is delegated to them. | and every zone that is delegated to them. | |||
| If a zone is delegated to AS112 nameservers without those nameservers | If a zone is delegated to AS112 nameservers without those nameservers | |||
| being configured ahead of time to answer authoritatively for that | being configured ahead of time to answer authoritatively for that | |||
| zone, there is a detrimental impact on clients following referrals | zone, there is a detrimental impact on clients following referrals | |||
| for queries within that zone. This misconfiguration is colloquially | for queries within that zone. This misconfiguration is colloquially | |||
| known as a "lame delegation". | known as a "lame delegation". | |||
| skipping to change at page 5, line 22 ¶ | skipping to change at page 5, line 22 ¶ | |||
| address covered by that prefix is in use. The IPv6 address TBAv6-1 | address covered by that prefix is in use. The IPv6 address TBAv6-1 | |||
| has been similarly assigned such that no other address within a | has been similarly assigned such that no other address within a | |||
| covering /48 is in use. This addressing plan accommodates the | covering /48 is in use. This addressing plan accommodates the | |||
| anycast distribution of the BLACKHOLE.AS112.ARPA service using a | anycast distribution of the BLACKHOLE.AS112.ARPA service using a | |||
| single IPv4 service prefix and a single IPv6 service prefix. See | single IPv4 service prefix and a single IPv6 service prefix. See | |||
| [RFC4786] for more discussion of anycast service distribution; see | [RFC4786] for more discussion of anycast service distribution; see | |||
| Section 8 for the specific requests this document makes of the IANA. | Section 8 for the specific requests this document makes of the IANA. | |||
| Some or all of the existing AS112 nodes should be extended to support | Some or all of the existing AS112 nodes should be extended to support | |||
| these new nameserver addresses, and to host the EMPTY.AS112.ARPA | these new nameserver addresses, and to host the EMPTY.AS112.ARPA | |||
| zone. See [I-D.jabley-dnsop-rfc6304bis] for revised guidance to | zone. See [RFC6304bis] for revised guidance to AS112 server | |||
| AS112 server operators. | operators. | |||
| Each part of the DNS namespace for which it is desirable to sink | Each part of the DNS namespace for which it is desirable to sink | |||
| queries at AS112 nameservers should be redirected to the | queries at AS112 nameservers should be redirected to the | |||
| EMPTY.AS112.ARPA zone using DNAME [RFC6672]. See Section 3.2 for | EMPTY.AS112.ARPA zone using DNAME [RFC6672]. See Section 3.2 for | |||
| guidance to zone administrators. | guidance to zone administrators. | |||
| 3. AS112 Operations | 3. AS112 Operations | |||
| 3.1. Extensions to Support DNAME Redirection | 3.1. Extensions to Support DNAME Redirection | |||
| The guidance provided in [RFC6304] is extended to include | Guidance to operators of AS112 nodes is extended to include | |||
| configuration of the TBAv4-1, and TBAv6-1 addresses, and the | configuration of the TBAv4-1, and TBAv6-1 addresses, and the | |||
| corresponding announcement of covering routes for those addresses, | corresponding announcement of covering routes for those addresses, | |||
| and to host the EMPTY.AS112.ARPA zone. | and to host the EMPTY.AS112.ARPA zone. | |||
| IPv4-only AS112 nodes should only configure the TBAv4-1 nameserver | IPv4-only AS112 nodes should only configure the TBAv4-1 nameserver | |||
| address; IPv6-only AS112 nodes should only configure the TBAv6-1 | address; IPv6-only AS112 nodes should only configure the TBAv6-1 | |||
| nameserver address. | nameserver address. | |||
| It is only necessary for a single AS112 server operator to implement | It is only necessary for a single AS112 server operator to implement | |||
| these extensions for this mechanism to function as intended. It is | these extensions for this mechanism to function as intended. It is | |||
| beneficial if many more than one AS112 server operators make these | beneficial if many more than one AS112 server operators make these | |||
| changes, however, since that provides for greater distribution and | changes, however, since that provides for greater distribution and | |||
| capacity for the nameservers serving the EMPTY.AS112.ARPA zone. It | capacity for the nameservers serving the EMPTY.AS112.ARPA zone. It | |||
| is not necessary for all AS112 server operators to make these changes | is not necessary for all AS112 server operators to make these changes | |||
| for the mechanism to be viable. | for the mechanism to be viable. | |||
| Detailed instructions for the implementation of these extensions is | Detailed instructions for the implementation of these extensions is | |||
| included in [I-D.jabley-dnsop-rfc6304bis]. | included in [RFC6304bis]. | |||
| 3.2. Redirection of Query Traffic to AS112 Servers | 3.2. Redirection of Query Traffic to AS112 Servers | |||
| Once the EMPTY.AS112.ARPA zone has been deployed using the | Once the EMPTY.AS112.ARPA zone has been deployed using the | |||
| nameservers described in Section 3.1, redirections may be installed | nameservers described in Section 3.1, redirections may be installed | |||
| in the DNS namespace for queries that are intended to be answered by | in the DNS namespace for queries that are intended to be answered by | |||
| the AS112 infrastructure. | the AS112 infrastructure. | |||
| For example, reverse queries corresponding to TEST-NET-1 | For example, reverse queries corresponding to TEST-NET-1 | |||
| (192.0.2.0/24) [RFC5737] could be redirected to AS112 nameservers by | (192.0.2.0/24) [RFC5737] could be redirected to AS112 nameservers by | |||
| skipping to change at page 15, line 11 ¶ | skipping to change at page 15, line 11 ¶ | |||
| | | | | | | | | |||
| | DS-RDATA: | As chosen by the IANA, see Section 8.2 | | | DS-RDATA: | As chosen by the IANA, see Section 8.2 | | |||
| +----------------+--------------------------------------------------+ | +----------------+--------------------------------------------------+ | |||
| 9. Security Considerations | 9. Security Considerations | |||
| This document presents no known additional security concerns to the | This document presents no known additional security concerns to the | |||
| Internet. | Internet. | |||
| For security considerations relating to AS112 service in general, see | For security considerations relating to AS112 service in general, see | |||
| [RFC6304]. | [RFC6304bis]. | |||
| 10. Acknowledgements | 10. Acknowledgements | |||
| Your name here, etc. | Your name here, etc. | |||
| 11. References | 11. References | |||
| 11.1. Normative References | 11.1. Normative References | |||
| [I-D.jabley-dnsop-rfc6304bis] | ||||
| Abley, J. and W. Maton, "AS112 Nameserver Operations", | ||||
| draft-jabley-dnsop-rfc6304bis-00 (work in progress), | ||||
| February 2014. | ||||
| [RFC1035] Mockapetris, P., "Domain names - implementation and | [RFC1035] Mockapetris, P., "Domain names - implementation and | |||
| specification", STD 13, RFC 1035, November 1987. | specification", STD 13, RFC 1035, November 1987. | |||
| [RFC2308] Andrews, M., "Negative Caching of DNS Queries (DNS | [RFC2308] Andrews, M., "Negative Caching of DNS Queries (DNS | |||
| NCACHE)", RFC 2308, March 1998. | NCACHE)", RFC 2308, March 1998. | |||
| [RFC6304] Abley, J. and W. Maton, "AS112 Nameserver Operations", | [RFC6304bis] | |||
| RFC 6304, July 2011. | Abley, J. and W. Maton, "AS112 Nameserver Operations", | |||
| draft-ietf-dnsop-rfc6304bis-00 (work in progress), | ||||
| February 2014. | ||||
| [RFC6672] Rose, S. and W. Wijngaards, "DNAME Redirection in the | [RFC6672] Rose, S. and W. Wijngaards, "DNAME Redirection in the | |||
| DNS", RFC 6672, June 2012. | DNS", RFC 6672, June 2012. | |||
| 11.2. Informative References | 11.2. Informative References | |||
| [RFC1918] Rekhter, Y., Moskowitz, R., Karrenberg, D., Groot, G., and | [RFC1918] Rekhter, Y., Moskowitz, R., Karrenberg, D., Groot, G., and | |||
| E. Lear, "Address Allocation for Private Internets", | E. Lear, "Address Allocation for Private Internets", | |||
| BCP 5, RFC 1918, February 1996. | BCP 5, RFC 1918, February 1996. | |||
| skipping to change at page 22, line 24 ¶ | skipping to change at page 21, line 24 ¶ | |||
| 01 Some particularly egregious spelling mistakes fixed. Warren | 01 Some particularly egregious spelling mistakes fixed. Warren | |||
| Kumari and George Michaelson added as co-authors. Intended status | Kumari and George Michaelson added as co-authors. Intended status | |||
| changed to informational. Appendix on DNAME testing added, | changed to informational. Appendix on DNAME testing added, | |||
| describing an experiment conducted by Geoff Huston and George | describing an experiment conducted by Geoff Huston and George | |||
| Michaelson. | Michaelson. | |||
| 00 Adopted by dnsop in IETF88, Vancouver; resubmitted as | 00 Adopted by dnsop in IETF88, Vancouver; resubmitted as | |||
| draft-ietf-dnsop-as112-dname. Changed contact info for Brian. | draft-ietf-dnsop-as112-dname. Changed contact info for Brian. | |||
| 01 Minor updates following submission of | 01 Minor updates following submission of | |||
| [I-D.jabley-dnsop-rfc6304bis]. | draft-jabley-dnsop-rfc6304bis. | |||
| 02 Text in IANA Considerations section dealing with address | 02 Text in IANA Considerations section dealing with address | |||
| assignments modified following informal advice received from Leo | assignments modified following informal advice received from Leo | |||
| Vegoda. | Vegoda. | |||
| 03 Updated references to 6304 following guidance from working group | ||||
| chairs. | ||||
| Authors' Addresses | Authors' Addresses | |||
| Joe Abley | Joe Abley | |||
| Dyn, Inc. | Dyn, Inc. | |||
| 470 Moore Street | 470 Moore Street | |||
| London, ON N6C 2C2 | London, ON N6C 2C2 | |||
| Canada | Canada | |||
| Phone: +1 519 670 9327 | Phone: +1 519 670 9327 | |||
| Email: jabley@dyn.com | Email: jabley@dyn.com | |||
| End of changes. 14 change blocks. | ||||
| 26 lines changed or deleted | 26 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||