On Wed, Apr 23, 2014 at 7:11 PM, Joe Abley <jab...@hopcount.ca> wrote: > > On 23 Apr 2014, at 18:32, Phillip Hallam-Baker <hal...@gmail.com> wrote: > >> We can't run over port 53 (trust me, I tried). > > You have doubts about the approach described in > draft-hzhwm-start-tls-for-dns-00? Those would be interesting to hear; I find > that draft (and the accompanying t-dns technical report) to be quite > compelling. > > If you have doubts, are you mainly concerned about transactions between > recursive and authority servers, or between stub resolvers and recursive > servers?
I meant Port 53 UDP. There is just too much middlebox stuff that gets in the way. Port 53 TCP might be viable. -- Website: http://hallambaker.com/ _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
