[dns-operations] EDNS client-subnet best practice?
Paul Vixie
paul at redbarn.org
Wed Jun 3 15:56:14 UTC 2020
On Wednesday, 3 June 2020 12:44:53 UTC Chris Adams wrote:
> What is considered current best practice for recursive servers on
> enabling EDNS client-subnet?
most full resolvers leave it completely off. sometimes because the full
resolver shares topology with its stub resolvers, and ECS would be redundant.
other times it's because of privacy concerns, where the full resolver is
trying to be a blender through which the identity of the stub clients cannot
be as reliably guessed. my own motive is that i'm expecting the CDNs of the
world to redirect me at the HTTP layer, which they must be able to do because
ECS is non-ubiquitous, and i reject the complexity of ECS as being a design
error designed by the marketing department.
see also: https://queue.acm.org/detail.cfm?id=1647302
vixie
More information about the dns-operations
mailing list