[dns-operations] serving the root zone

Jim Reid jim at rfc1035.com
Wed Nov 27 09:35:26 UTC 2013


On 27 Nov 2013, at 08:10, SM <sm at resistor.net> wrote:

> Some root servers allow AXFR; some do not allow AXFR.

So what? The root zone file is freely available to anyone who wants it. AXFR from a root server is not the only mechanism to get a copy. And as Joe just said, it's not necessarily a Good Thing for resolving servers to keep a local copy of the root zone.

BTW, you quoted Section 2.7 of RFC2870. That BCP is over 13 years old. The root (server system) of 2000 is very different from today's. There was no anycasting back then. The root wasn't signed. ICANN had only created 7 gTLDs. Verisign didn't generate the root zone. etc, etc. Although this document is an excellent starting point for anyone operating an important authoritative name server, it should not be viewed as the final, definitive word on this topic.




More information about the dns-operations mailing list