To:
Paul Hoffman / IMC <phoffman@imc.org>
Cc:
Michael Richardson <mcr@sandelman.ottawa.on.ca>, keydist@cafax.se
From:
Derek Atkins <warlord@MIT.EDU>
Date:
08 Jan 2002 13:59:57 -0500
In-Reply-To:
Paul Hoffman / IMC's message of "Tue, 8 Jan 2002 10:17:24 -0800"
Sender:
owner-keydist@cafax.se
Subject:
Re: From whence we came...
Paul Hoffman / IMC <phoffman@imc.org> writes: > At 9:43 PM -0500 1/7/02, Derek Atkins wrote: > >I think we're already assuming EDNS0 and DNSSEC, which already requires > >support for >512 bytes (and provides a way of negotiating support). > >So, no, size is not (really) an issue. > > OK, I admit that I am a bit naive about DNS politics. I thought that > the objection to >512 octets was regardless of EDNS0. That is, even > though the end systems are supposed to support longer packets, the > UDP fragmentation happens in the middle of the net, and the end > systems fall back to TCP. The EDNS0 document is far from clear (even > after many readings, which I have done wearing my IDN hat). > > So, are 2K-4K DNS responses OK now as long as they come in EDNS0? 2K-4K? Where do you get that size? When I query, for example, "tislabs.com. IN ANY" I get a response of 2223 bytes (according to dig). This response includes the SOA, 3 NS records, 2 MX records, 4 KEY records, 1 NXT record, and 8 SIG records. So, where is your 4K coming from? > --Paul Hoffman, Director > --Internet Mail Consortium -derek -- Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory Member, MIT Student Information Processing Board (SIPB) URL: http://web.mit.edu/warlord/ PP-ASEL-IA N1NWH warlord@MIT.EDU PGP key available