Stephane Bortzmeyer <bortzme...@nic.fr> wrote:
>
> > "ANY Query" refers to a DNS meta-query
>
> meta-query is not defined in this document, in RFC 1034, 1035 or
> 7719. Opinion: just "query".

There's precedent for "metatype" - cf. RFC 2136 section 3.4.1.2 - "check
the TYPE and if it is ANY, AXFR, MAILA, MAILB, or any other QUERY metatype"
also the IANA registry describes RRtypes 128-255 as "Q TYPEs, Meta TYPEs".

> > Implementers SHOULD provide an option for operators to specify
> > behavior over TCP.
>
> If this is because, with TCP, you have some certainty about the client
> address, and therefore do not risk reflection attacks, then I suggest
> to replace TCP by "transports that provide some guarantee about the
> authenticity of the source IP address, such as TCP or DNS cookies".

The reason I deployed minimal-any was to avoid oversized UDP responses, to
avoid fragmentation and truncation - not because of spoofing (RRL deals
with spoofing). Cookies don't do anything to help avoid oversized
responses, so I would still want to send a minimal-any response to a
cookie client.

Tony.
-- 
f.anthony.n.finch  <d...@dotat.at>  http://dotat.at/  -  I xn--zr8h punycode
Hebrides: West 6 to gale 8, occasionally severe gale 9 at first, backing
southwest 5 or 6 later. Rough or very rough, occasionally high at first. Rain
or wintry showers. Moderate or good.

_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop

Reply via email to