On Apr 4, 2018, at 2:57 PM, Paul Vixie <[email protected]> wrote: > no. it uses a DNS response message of rcode SERVFAIL for error signalling. > so, it is as transparent as possible, and no more.
Okay. So the upstream proxy is intended to simply take the "tcp" or "udp" indication and do the query using tcp or udp as indicated? What if I write a proxy that doesn't support this behavior—will your downstream proxy fail to interoperate with it? E.g., if it does the query using TCP, or automatically fails over to TCP if it gets a truncated response, and therefore returns a long response to a UDP query, will bad things happen?
_______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
