[dns-operations] CloudFlare policy on ANY records changing
Jared Mauch
jared at puck.nether.net
Fri Mar 6 17:10:53 UTC 2015
> On Mar 6, 2015, at 11:02 AM, Olafur Gudmundsson <ogud at ogud.com> wrote:
>
>>
>> On Mar 6, 2015, at 10:48 AM, Casey Deccio <casey at deccio.net> wrote:
>>
>> On Fri, Mar 6, 2015 at 10:05 AM, Olafur Gudmundsson <ogud at ogud.com> wrote:
>>
>> We will be depreciating support for ANY queries and return NOTIMP in the near future
>> https://blog.cloudflare.com/deprecating-dns-any-meta-query-type/
>>
>> ID proposing this behavior will be forthcoming
>>
>>
>> Be prepared... Less than two years ago a prominent DNS service began denying ANY queries for a previous employer's domain, and some (important) emails were not delivered. Historical measurements will help quantify potential issues, but certainly those are not comprehensive, and like anything, there will be breakage.
>>
>> I'm not suggesting it's not the right direction, but the change seems somewhat abrupt, and might result in some undesirable near-term effects. Community support and publicity could help mitigate issues.
>>
>> Best regards,
>> Casey
>
> By announcing this we are hoping that anyone running un-patched qmail will fix it.
I’m guessing there will be no change.
Even setting TC=1 will have issues as many people are behind devices that don’t do TC=1 right.
TL;DR: Netgear sends REFUSED in response to TCP queries
https://www.cloudshark.org/captures/273da18d3057
- Jared
More information about the dns-operations
mailing list