In message <[email protected]>, Stephane Bortzmeyer writes: > Is it reasonable/legal to have both tc and ad?
Yes. The example is more than just tc + ad, it is also zero records after the EDNS OPT record is removed at which point the ad=1 is just noise. If you are going to use a tc=1 response and not retry with TCP you really have to think about how you interpret the response. AD=1 is clear enough in what it means. Mark > % dig +noignore @8.8.8.8 ANY fr > > ; <<>> DiG 9.7.3 <<>> +noignore @8.8.8.8 ANY fr > ; (1 server found) > ;; global options: +cmd > ;; Got answer: > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 46304 > ;; flags: qr tc rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 > > ;; OPT PSEUDOSECTION: > ; EDNS: version: 0, flags: do; udp: 512 > ;; QUESTION SECTION: > ;fr. IN ANY > > ;; Query time: 59 msec > ;; SERVER: 8.8.8.8#53(8.8.8.8) > ;; WHEN: Thu May 23 23:07:10 2013 > ;; MSG SIZE rcvd: 31 > > _______________________________________________ > dns-operations mailing list > [email protected] > https://lists.dns-oarc.net/mailman/listinfo/dns-operations > dns-jobs mailing list > https://lists.dns-oarc.net/mailman/listinfo/dns-jobs -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: [email protected] _______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations dns-jobs mailing list https://lists.dns-oarc.net/mailman/listinfo/dns-jobs
