nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: DNS Recursive Operators: Please enable QNAME minimization (RFC7816) for the enhanced privacy of your users

From: "John Levine" <johnl () iecc com>
Date: 18 Sep 2019 16:30:06 -0700
In article <8580e3e4-98b8-2828-e43f-6115c92faee5 () massar ch> you write:

Currently though:

use-application-dns.net. 172800        IN      NS      ns-cloud-b1.googledomains.com.
use-application-dns.net. 172800        IN      NS      ns-cloud-b2.googledomains.com.
use-application-dns.net. 172800        IN      NS      ns-cloud-b3.googledomains.com.
use-application-dns.net. 172800        IN      NS      ns-cloud-b4.googledomains.com.


Nope.

;; ANSWER SECTION:

;; AUTHORITY SECTION:
use-application-dns.net.        172800  IN      NS      ns4-64.akam.net.
use-application-dns.net.        172800  IN      NS      ns7-66.akam.net.
use-application-dns.net.        172800  IN      NS      ns5-65.akam.net.
use-application-dns.net.        172800  IN      NS      ns1-240.akam.net.

$ drill @ns5-65.akam.net. use-application-dns.net a
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 48353
;; flags: qr aa rd ; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;; use-application-dns.net.     IN      A

;; ANSWER SECTION:
use-application-dns.net.        60      IN      A       185.199.108.153
use-application-dns.net.        60      IN      A       185.199.109.153
use-application-dns.net.        60      IN      A       185.199.111.153
use-application-dns.net.        60      IN      A       185.199.110.153

I have this special-cased in my own resolver, of course.

-- 
Regards,
John Levine, johnl () taugh com, Primary Perpetrator of "The Internet for Dummies",
Please consider the environment before reading this e-mail. https://jl.ly
Previous By Date Next
Previous By Thread Next

Current thread: