> On Feb 22, 2020, at 19:01, Tony Finch <d...@dotat.at> wrote:
>
> Evan Hunt <e...@isc.org> wrote:
>>
>> CNAME at the apex wasn't really the problem. Getting browsers to display
>> content from the right CDN server was the problem.
>
> My interest in ANAME is basically nothing to do with CDNs. I want my users
> to be able to configure aliases by name or address without having to deal
> with incomprehensible restrictions.
I had a customer once who was interested in ANAME-like behaviour as a
means of pushing DNS responses from their authority servers located in
their own data centres to commercial DNS provider authority servers,
where resolvers might find them more reliably.
The data centre/origin authority servers in question were load
balancers ("GSLB") that synthesised responses based on real-time
parameters that were not trivial to reproduce in commercial enterprise
DNS services.
In effect, queries from the world would be handled by the enterprise
DNS service infrastructure and the responses would be provisioned from
the customer-maintained origin servers using exactly the DNS protocol.
This provided a mechanism to de-risk the customer-maintained origin
servers which were otherwise seen as at risk from DDoS.
Joe
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
