On Thu, Feb 14, 2019 at 12:29 PM Arnt Gulbrandsen <a...@gulbrandsen.priv.no> wrote:
> On Thursday 14 February 2019 14:58:58 CET, Tony Finch wrote: > > How does this relate to: > > > > https://tools.ietf.org/html/draft-wkumari-dnsop-hammer > > https://tools.ietf.org/html/draft-ietf-dnsop-7706bis > > It originates in various ideas Jiankang and I have chatted about. > > I didn't like 7706, because I feel that the servers that have long ping > times to the nearest root are more likely to have admins who make > mistakes. > Jiankang and I discussed alternatives when we met a while ago, and a few > times since. Once we hit upon this possibility, we didn't discuss > draft-wkumari-dnsop-hammer, perhaps because it's expired and we'd > forgotten. Mental entropy. > > Compared to the hammer draft, I should say that this is dead simple, has > one fewer acronyms, and that both of those are intentional features. > > I see your name is in the text. Why did you let it expire? > > > It looks like this new draft is actually a revision of: > > > > https://tools.ietf.org/html/draft-yao-dnsop-root-cache > > Probably correct. IIt was I who did the typing, and I prefer to start by > editing something that already has the right XML stuff and at least some > references etc. > > Arnt > The draft assumes typical TTL is a week, but what I see in the root zone is: the records for X.root-servers.net are 6 days (518400), DS, NSEC, RRSIG, and SOA are 1 day (86400), and A, AAAA, DNSKEY, and NS are all 2 days (172800). I assume the NS records are the most often used? So I think the draft needs to recalculate the numbers with 2 days as the typical ttl. awk '{print $2,$4}' root.zone | sort | uniq -c 2 4159 172800 A 3648 172800 AAAA 3 172800 DNSKEY 7269 172800 NS 2 172800 RRSIG 13 518400 A 13 518400 AAAA 13 518400 NS 1 518400 RRSIG 2903 86400 DS 1536 86400 NSEC 2926 86400 RRSIG 2 86400 SOA 1 <<>> 9.11.3-1ubuntu1.3-Ubuntu 1 global +cmd 1 Query 8197 1 SERVER: 1 WHEN: Feb 1 XFR 22488 -- Bob Harold
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
