On Tue, 11 Nov 2014, Stuart Cheshire wrote:
I’m unable to attend the DPRIVE meeting in person because it overlaps with TAPS.
I see on the agenda discussion of items like Private DNS and DNS over TLS.
A historical note: Apple’s Back to My Mac service uses DNS over TLS to provide
confidentiality for the queries. This is described in RFC 6281.
The client looks up the SRV record “_dns-query-tls._tcp.example.com” to find
the target host and port which will answer DNS-over-TLS queries for the domain
“example.com”, and then the client sends subsequent queries for “example.com”
names directly there (bypassing the local DNS cache).
Thanks for the pointer. I was not aware of this.
I skimmed the RFC but it does not state on which port the DNS over TLS
happens. Is it on port 53 or port 443 or another port?
Paul
_______________________________________________
dns-privacy mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dns-privacy
