Re: [DNSOP] I-D Action: draft-ietf-dnsop-dns-wireformat-http-03.txt

Fri, 06 Jul 2018 06:06:56 -0700 

On Tue, Jul 3, 2018 at 12:36 PM Ben Schwartz <bemasc=
40google....@dmarc.ietf.org> wrote:

> Thanks for improving the clarity of this draft.
>
> Could you provide an example of a use case where the baseline DOH behavior
> is not sufficient, to motivate the "proto" parameter?  The text mentions a
> "transparency principle" as motivation, but I don't understand the
> significance of this principle.
>
> In particular, I think the draft should explain why it's not sufficient to
> apply truncation when the proxy packages an HTTP DOH response into a DNS
> response over UDP.
>
>
As I understand it, there are cases where TCP is handled differently than
UDP.  TCP has a session and is less susceptible to source address
spoofing,  so things like "ANY" responses, or longer answers, might be
handled differently.

-- 
Bob Harold


On Mon, Jul 2, 2018 at 6:10 PM <internet-dra...@ietf.org> wrote:
>
>>
>> A New Internet-Draft is available from the on-line Internet-Drafts
>> directories.
>> This draft is a work item of the Domain Name System Operations WG of the
>> IETF.
>>
>>         Title           : An Proxy Use Case of DNS over HTTPS
>>         Authors         : Linjian Song
>>                           Paul Vixie
>>                           Shane Kerr
>>         Filename        : draft-ietf-dnsop-dns-wireformat-http-03.txt
>>         Pages           : 6
>>         Date            : 2018-07-02
>>
>> Abstract:
>>    This memo introduces a DNS proxy use case to tunnel DNS query and
>>    response using DNS over HTTPs (DOH) protocol, a newly proposed DNS
>>    transport.  The proxy use case is useful as a incremental adoption
>>    tool when DOH is not widely available in old-transport client and
>>    server.
>>
>>
>> The IETF datatracker status page for this draft is:
>> https://datatracker.ietf.org/doc/draft-ietf-dnsop-dns-wireformat-http/
>>
>> There are also htmlized versions available at:
>> https://tools.ietf.org/html/draft-ietf-dnsop-dns-wireformat-http-03
>>
>> https://datatracker.ietf.org/doc/html/draft-ietf-dnsop-dns-wireformat-http-03
>>
>> A diff from the previous version is available at:
>> https://www.ietf.org/rfcdiff?url2=draft-ietf-dnsop-dns-wireformat-http-03
>>
>

_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop

Reply via email to