[dns-operations] "EarthLink Criticized for DNS Redirects"

Mark Andrews Mark_Andrews at isc.org
Mon Sep 18 15:30:26 UTC 2006


> 
> Le 2006-09-18 à 09:54, Barry Greene (bgreene) a écrit :
> 
> > Yes, that is the practice turned policy that I'm talking about.
> 
> Thanks for the clarification.
> 
> It may be useful to note that it's a recommendation for ISPs, the  
> next time you mention it. Your comment 'much like Canada who has all  
> customers go through their "port 25" infrastructure' makes it sound  
> like some kind of draconian centralised government control of  
> packets. Although some big residential ISPs in Canada do this, many  
> residential ISPs do not (and I haven't yet heard of business-grade  
> internet access services that implement it, although there may well  
> be some.)
> 
> The trouble with 25/tcp redirection is that it breaks mail submission  
> from clients to mail services not run by their ISPs. Since mail  
> clients have widely-available alternatives these days, however (most  
> clients will let you specify a port) this turns out to be a non-issue.
> 
> There's an unfortunate analogue between the 25/tcp-overloading and  
> the DNS, however. There are a big class of requests sent to 53/udp  
> which are suitable for redirection to a local cache, but there are  
> many notable exceptions.
> 
> Maybe it's reasonable to look at a couple of examples of things that  
> are really unsuitable for redirection (AXFR/IXFR and UPDATE, say) and  
> to standardise alternate ports for them to listen on.

	Anything with rd=0.

> Joe
> 
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.oarci.net
> http://lists.oarci.net/mailman/listinfo/dns-operations
> 
--
ISC Training!  October 16-20, 2006, in the San Francisco Bay Area,
covering topics from DNS to DHCP.  Email training at isc.org.
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org



More information about the dns-operations mailing list