All,
A new version of draft-ietf-edns-tcp-keepalive is available. It has been
updated with comments from the recent reviews:
- Clarified that a response to a query with any OPT RR may contain the
edns-tcp-keepalive option.
- Corrected TIMEOUT length from 4 to 2 in the diagram.
- Updated references, including name change of [STARTTLS] -> [DNS-over-TLS] and
adding reference for cache poisoning.
- Updated wording in section on Intermediary Considerations.
- Updated wording describing RRL.
- Added paragraph to security section describing client behaviour profiles.
- Added wording to introduction on use case for stub/resolver/authoritative.
We would be grateful for further reviews in order to progress the document.
Regards
Sara.
> On 30 Sep 2015, at 10:12, internet-dra...@ietf.org wrote:
>
>
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> This draft is a work item of the Domain Name System Operations Working Group
> of the IETF.
>
> Title : The edns-tcp-keepalive EDNS0 Option
> Authors : Paul Wouters
> Joe Abley
> Sara Dickinson
> Ray Bellis
> Filename : draft-ietf-dnsop-edns-tcp-keepalive-03.txt
> Pages : 13
> Date : 2015-09-30
>
> Abstract:
> DNS messages between clients and servers may be received over either
> UDP or TCP. UDP transport involves keeping less state on a busy
> server, but can cause truncation and retries over TCP. Additionally,
> UDP can be exploited for reflection attacks. Using TCP would reduce
> retransmits and amplification. However, clients commonly use TCP
> only for fallback and servers typically use idle timeouts on the
> order of seconds.
>
> This document defines an EDNS0 option ("edns-tcp-keepalive") that
> allows DNS servers to signal a variable idle timeout. This
> signalling facilitates a better balance of UDP and TCP transport
> between individual clients and servers, reducing the impact of
> problems associated with UDP transport and allowing the state
> associated with TCP transport to be managed effectively with minimal
> impact on the DNS transaction time.
>
>
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-edns-tcp-keepalive/
>
> There's also a htmlized version available at:
> https://tools.ietf.org/html/draft-ietf-dnsop-edns-tcp-keepalive-03
>
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-dnsop-edns-tcp-keepalive-03
>
>
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
