On Wed, Mar 14, 2012 at 5:36 PM, Dave Taht <[email protected]> wrote: > On Wed, Mar 14, 2012 at 2:11 PM, SM <[email protected]> wrote: >> Hi Dave, >> >> At 12:18 14-03-2012, Dave Taht wrote: >>> >>> What I have been using has been '.lan'. I've seen it used elsewhere, >>> too, on private nets, but I have no idea how common it is. >> >> >> See www.icann.org/en/groups/ssac/documents/sac-045-en.pdf > > That, in it's own weird way, is confirmation that .lan is widely used > as an internal dns address... :) > > For reference, this is how to configure bind9 to not leak a private > .lan or .whatever to the roots. > > https://github.com/dtaht/ceropackages/blob/master/net/bind-latest/files/chroot/named/etc/bind/localzones/us.zones > > https://github.com/dtaht/ceropackages/blob/master/net/bind-latest/files/chroot/named/etc/bind/master/lan.internal
Dave, This is interesting work. Do you see it expanding to cover the list of domains described in RFC 6303 and registered by IANA: http://www.iana.org/assignments/locally-served-dns-zones/locally-served-dns-zones.xml Granted, ISPs probably have sacrificial servers deployed but by also filtering at the CER the bad packets, as Fred said, have to thread two needles. -K- >> >> Regards, >> -sm > > > > -- > Dave Täht > SKYPE: davetaht > US Tel: 1-239-829-5608 > http://www.bufferbloat.net > _______________________________________________ > homenet mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/homenet _______________________________________________ homenet mailing list [email protected] https://www.ietf.org/mailman/listinfo/homenet
