[dns-operations] Capturing 220.127.116.11 Traffic
Carlos M. Martinez
carlosm3011 at gmail.com
Mon Feb 25 20:02:06 UTC 2013
On 2/25/13 5:38 PM, Graham Beneke wrote:
> ... snip ...
>> Needless to say that if you add to the mix ISPs who are willing to mess
>> with your NXDOMAINs for a buck.... the deal is sealed.
> I have no interest in fiddling with the responses to that extent but
> where is the line? ;-)
Is there a line? :D
IMO, no messing with customer's packets at all without their informed
consent is where the line is.
That said, there is something to be said for easy-to-remember,
easy-to-type, DNS addresses. Why not write an I-D asking IANA for a
couple of very easy addresses that we can all agree to locally anycast ?
People can still choose to use Google's, but here you would be providing
and alternative and, people _will know_ that these addresses are
answered locally by their ISP. You are not mis-representing anyone.
That you can do this today with any address is of course true, but, as
we've been seeing with 18.104.22.168 and 22.214.171.124, some people just can't be
>> On 2/25/13 4:06 PM, SM wrote:
>>> Hi Graham,
>>> At 09:26 25-02-2013, Graham Beneke wrote:
>>>> office and NOC to a mom-and-pop IT shop. While I question the wisdom in
>>>> that, I was far more concerned by the fact that this mom-and-pop shop
>>>> had configured Google Public DNS as the resolver for everything on their
>>> A lot of people use 126.96.36.199. I don't know whether it is due to the
>>> lemming  effect or swarm intelligence.
>>>> Now on my corner of the planet Google DNS is 190ms away. Never mind the
>>>> mess we have with all the CDNs mapping their traffic to a different
>>>> So what are you thoughts on capturing these queries and answering them
>>>> on local resolvers that are <10ms away?
>>> DNS interception is not a good idea in my opinion.
>>>> The folks at Google are certainly not going to encourage us to spoof
>>>> responses from their servers but are there any other potential pitfalls
>>>> with doing this to save the customers from themselves?
>>> Once that becomes popular the regulator might wish to "standardize" it
>>> (see draft-iab-filtering-considerations-02). Saving the customers from
>>> themselves is a good intention.
>>> 1. Lemmings are small rodents that have been known to follow each other
>>> as they charge to their deaths off the edge of cliffs. This is actually
>>> an unsubstantiated myth about lemmings.
>>> dns-operations mailing list
>>> dns-operations at lists.dns-oarc.net
>>> dns-jobs mailing list
More information about the dns-operations