[dns-operations] Unexpected truncation
Dave Knight
dave at knig.ht
Sun Apr 3 18:39:30 UTC 2011
On 2011-04-03, at 11:33 AM, George Barwood wrote:
> dig a.root-servers.net @a.gtld-servers.net +dnssec
>
> is truncating, even though the response size is only 1170 bytes after TCP retry.
>
> This seems odd to me.
I think this is an artefact of how they are handling fragmentation of signed responses
http://svsf40.icann.org/meetings/siliconvalley2011/presentation-verisign-update-16mar11-en.pdf
See slide 13
dave
More information about the dns-operations
mailing list