nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Great Suggestion for the DNS problem...?

From: "Jay R. Ashworth" <jra () baylink com>
Date: Mon, 28 Jul 2008 15:52:47 -0400
On Mon, Jul 28, 2008 at 12:35:30PM -0700, Tomas L. Byrnes wrote:

As you pointed out, the protocol, if properly implemented, addresses
this. 

There should always be Glue (A records for the NS) in a delegation. RFC
1034 even specifies this:

4.2.2 <snip>
As the last installation step, the delegation NS RRs and glue RRs
necessary to make the delegation effective should be added to the parent
zone.  The administrators of both zones should insure that the NS and
glue RRs which mark both sides of the cut are consistent and remain so.
</snip>


A probably important distinction:

That's not the protocol, that's the specified implementation framework
of the protocol.  In general, DNS still works if you screw that up,
which is why it's so often screwed up.

Cheers,
-- jra
-- 
Jay R. Ashworth                   Baylink                      jra () baylink com
Designer                     The Things I Think                       RFC 2100
Ashworth & Associates     http://baylink.pitas.com                     '87 e24
St Petersburg FL USA      http://photo.imageinc.us             +1 727 647 1274

             Those who cast the vote decide nothing.
             Those who count the vote decide everything.
               -- (Josef Stalin)
Previous By Date Next
Previous By Thread Next

Current thread: