[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Teredo server selection

To: Nathan Ward <v6ops@daork.net>
Subject: Re: Teredo server selection
From: Brian Dickson <briand@ca.afilias.info>
Date: Sun, 23 Dec 2007 05:32:54 -0500
Cc: Florian Weimer <fw@deneb.enyo.de>, v6ops WG <v6ops@ops.ietf.org>, Joe Abley <jabley@ca.afilias.info>
In-reply-to: <1879B202-6301-4BFE-9F34-6634FA47F646@daork.net>
References: <3F989A52-88D6-416A-A4D4-F6417638B6E2@daork.net> <87ve6q4b4t.fsf@mid.deneb.enyo.de> <1879B202-6301-4BFE-9F34-6634FA47F646@daork.net>
User-agent: Thunderbird 2.0.0.9 (Windows/20071031)

Nathan Ward wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 23/12/2007, at 11:28 AM, Florian Weimer wrote:
* Nathan Ward:
1) Lookup A record for `_teredo._udp.arpa.' (or whatever. Note the
trailing . - we don't want to be looking up
`_teredo._udp.arpa.defaultdomain' etc.)
You should really discuss this with DNS people. This is a very badidea
because it produces lots of pointless queries which need to be handled
somewhere, probably on a production name server.
You are talking about the use of .arpa, I assume, and query load onthe root servers?
I think I understand the concern, but negative caching would deal withthis, same as it does for .local., .invalid., etc. The negative TTL onboth .arpa and . is 86400s.

The default maximum negative cache TTL for BIND9 is 3 hours (10800s).
This overrides the negative TTL on any zone with longer TTL.

(*Relying* on negative caching as a key part of any design, is a *bad*idea.)

We're only talking about 1 query each time the Teredo client boots,

This would be 1 query per day per Windows box, roughly. Okay, maybe not*every* day, but oftenenough, like on Patch Tuesday, every Windows box reboots at roughly thesame time, and generates

one query.

soload on ISPs' recursive nameservers is not large - my laptop doesseveral queries per minute when idle, let alone at boot time or whenit's actively doing something.

What about the case where hosts have been set up with local recursiveservers (i.e. on the host itself)?Those would *all* hit the root and TLD server(s) for .arpa. in each suchinstance (host reboots).

Besides which, I don't understand why this *shouldn't* be somethinglocally instantiated,if it is supported by the ISP. Something like, "teredo.defaultdomain",by looking up "teredo" with no trailing dot.

I'm wondering why it is even necessary to do any of this set-up, beforestarting an application that actually wants/needs Teredo service.

I don't know what the proportion of hosts with Teredo enabled, whichactually *use* it is -- but if it is substantially lessthan 100%, I think the operational impact to Teredo potentiallyinterfering with native IPv6, should be given strong

consideration.

The coding convenience of "do this when we boot" is not a strongargument in favour of any particular

approach, when "do this" involves Internet-wide interactions.

Brian

References:
- Teredo server selection
  - From: Nathan Ward <v6ops@daork.net>
- Re: Teredo server selection
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: Teredo server selection
  - From: Nathan Ward <v6ops@daork.net>

Prev by Date: Re: Teredo server selection
Next by Date: Re: Teredo server selection
Previous by thread: Re: Teredo server selection
Next by thread: Re: Teredo server selection
Index(es):
- Date
- Thread