[dns-operations] IPv6 & IPv4 addresses

Mark Andrews marka at isc.org
Thu Mar 17 20:14:32 UTC 2011


In message <3A0B9200355346908B68811E07FC78E1 at local>, "George Barwood" writes:
> > ...and then all we have to do is change (all of) the deployed 
> > software to make the problem go away.
> > 
> 
> Well updating DNS servers is a relatively easy thing to do.
> And it's just a backwards-compatible optimisation.
> 
> One last thought: the TTL of NSEC/NSEC3 records currently seems to have no me
> aning.
> 
> I think resolvers could be allowed to assume the NSEC TTL can be used as the 
> negative caching TTL,
> thus it would normally be equal to the SOA "MINIMUM" value.
> 
> That would avoid the need to send a SOA record in addition.

You always send the SOA because not every client is dnssec aware and those
clients should be able to cache negative responses.
 
> But... I just doubt any of this is going to happen. It's not a big enough pro
> blem
> for volunteers at the IETF to devote the amount of time to it that would be n
> eeded.
> There would be a lot of discussion about whether it was safe, desirable, etc.
> I guess implementors could do it unilaterally, but that also seems unlikely.
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.dns-oarc.net
> https://lists.dns-oarc.net/mailman/listinfo/dns-operations
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org



More information about the dns-operations mailing list