[dns-operations] Embedding MAC address in DNS requests for selective filtering

Robert Edmonds edmonds at mycre.ws
Mon Jan 25 17:27:13 UTC 2016

bert hubert wrote:
> If anyone thinks NSID is not a good way to do this, please also let us know.

I think this is not a good way to do this, at least because RFC 5001
says the client should not include any payload data:

   The resolver MUST NOT include any NSID payload data in the query

If you do end up doing this with an in-band EDNS option, I think it
would make more sense to use a new option code, and there are
approximately ~65.5K of them available for assignment or experimental
use :-)

I also think that naked MAC addresses should not be re-used as unique
device identifiers.  Instead, maybe consider some mechanism for
generating a stable, opaque identifier, maybe taking inspiration from
RFC 7217, which tries to get rid of the MAC addresses from traditional
IPv6 SLAAC addressing.

Robert Edmonds

More information about the dns-operations mailing list