On Wed, Mar 14, 2012 at 5:36 PM, Dave Taht <[email protected]> wrote:
> On Wed, Mar 14, 2012 at 2:11 PM, SM <[email protected]> wrote:
>> Hi Dave,
>>
>> At 12:18 14-03-2012, Dave Taht wrote:
>>>
>>> What I have been using has been '.lan'. I've seen it used elsewhere,
>>> too, on private nets, but I have no idea how common it is.
>>
>>
>> See www.icann.org/en/groups/ssac/documents/sac-045-en.pdf
>
> That, in it's own weird way, is confirmation that .lan is widely used
> as an internal dns address... :)
>
> For reference, this is how to configure bind9 to not leak a private
> .lan or .whatever to the roots.
>
> https://github.com/dtaht/ceropackages/blob/master/net/bind-latest/files/chroot/named/etc/bind/localzones/us.zones
>
> https://github.com/dtaht/ceropackages/blob/master/net/bind-latest/files/chroot/named/etc/bind/master/lan.internal

Dave,

This is interesting work.  Do you see it expanding to cover the
list of domains described in RFC 6303 and registered by IANA:
http://www.iana.org/assignments/locally-served-dns-zones/locally-served-dns-zones.xml

Granted, ISPs probably have sacrificial servers deployed but by
also filtering at the CER the bad packets, as Fred said, have to
thread two needles.

-K-

>>
>> Regards,
>> -sm
>
>
>
> --
> Dave Täht
> SKYPE: davetaht
> US Tel: 1-239-829-5608
> http://www.bufferbloat.net
> _______________________________________________
> homenet mailing list
> [email protected]
> https://www.ietf.org/mailman/listinfo/homenet
_______________________________________________
homenet mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/homenet

Reply via email to