[dns-operations] Unexpected truncation

Dave Knight dave at knig.ht
Sun Apr 3 18:39:30 UTC 2011

On 2011-04-03, at 11:33 AM, George Barwood wrote:

> dig a.root-servers.net @a.gtld-servers.net +dnssec
> is truncating, even though the response size is only 1170 bytes after TCP retry.
> This seems odd to me.

I think this is an artefact of how they are handling fragmentation of signed responses


See slide 13


More information about the dns-operations mailing list