Paul Hoffman wrote:
Some folks had reservations about the current definition of "split DNS": "Where a corporate network serves up partly or completely different DNS inside and outside its firewall. There are many possible variants on this; the basic point is that the correspondence between a given FQDN (fully qualified domain name) and a given IPv4 address is no longer universal and stable over long periods." (Quoted from <xref target="RFC2775"/>, Section 3.8) What would the WG like for this definition?
my only qualm is that A and AAAA RR's are not the only things that are usually not the same when DNS is split in this way. MX, NS, SRV, and likely a dozen others, and DNSSEC signatures and keys, can also differ.
it should be called split-horizon DNS not split-DNS, to highlight the fact that it's the same zone name in an entirely separate DNS namespace.
-- P Vixie _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
