North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

RE: IPv6 reverse lookup - lame delegation?

  • From: Jeroen Massar
  • Date: Tue Feb 10 11:13:44 2004


Randy Bush wrote:

> >>> if i try to log into my machines back in tokyo by IPv6 SSH, it takes
> >>> very long time.  i guess i found the reason - (possible) lame delegation
> >>> of query returns instantly.
> >>> how could we fix it?
> >> By fixing the software as was deprecated 2 years+++
> >> ago as you should already know.
> > for backward compatibility reasons many software do
> > 	query;
> > 	if (not found)
> > 		query;
> > i'm not too sure if we can remove the "query" part today.
> if, as you say, there was instant response to the query,
> then jeroen's response that the software was broken seems even
> more clear.

The piece of software itojun describes is quite common, simply
because it already has taken two years for even getting an RFC
for reverse for the 6bone. Now all we have to do is
wait for the nameservers to actually appear and not to forget
for them to get populated, 6/6/6 is quite a good estimate I guess ;)

The problem only is that many software implementations only
check even though it is has been deprecated, fortunatly
now that the RFC for the 6bone is out some manufacturers have
been implementing support by basically doing the
simple g/ over their code.

As the doesn't exist at all for 6bone space at
the moment he got a correct NXDOMAIN back from those and
what itojun saw then where recursive looping dns servers
which where not authoritive for the reverse thus pointed
back to the root, software retries a number of times
causing the shown delay. (dig +trace is ones friend)

> and i don't believe in 'do-gooder' software that tries to make
> broken things work anyway.  if it succeeds, no one notices and
> says thanks.  if it fails, boy does it look bad. should indeed be gone completely from all software.
It should have been 2 years ago, but due to 6bone not having there was kind of a reason not to, but there is now...
If developers start fixing their software it will be enough
time for the NS operators to set the reverses up correctly.


Version: Unfix PGP for Outlook Alpha 13 Int.
Comment: Jeroen Massar /