On Wed, May 13, 2015 at 12:32 PM, Doug Royer <[email protected]> wrote: > > Firewall issue: > > We can't live in fear that only a handful of ports are forever usable > because of busted firewalls or busted firewall administrators. > > I think the decision should be based on what's best for DNS. > > I hope that older DNS servers do no crash when getting a new type of packet > information on port 53. > I would think that making sure we do not bust existing things should take > priority.
We should be abolishing port numbers in favor of SRV type discovery. However, DNS is the exception to the rule. It is a discovery protocol so it is the one area where fixed IP address and port is arguably acceptable still. It depends on your view of the client->resolver versus resolver->authoritative protocols and how binding is achieved for client->resolver. I think it is time to let go of fixed IP address and known port completely _______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
