Ted Lemon <[email protected]> wrote: >for things that need internet connectivity, and have the primary DNS >server on the main land. TSIG & DNS over TLS look like a good option >to look at.
> Have you looked at draft-ietf-dnssd-srp
> (https://tools.ietf.org/html/draft-ietf-dnssd-srp-01
> <https://tools.ietf.org/html/draft-ietf-dnssd-srp-01>)?
Ted, I didn't think it was relevant, but I read it anyway.
It has been sometime since I tried to grok the SRP stuff, and last time it
was mostly to understand the more homenet related things.
dnssd-srp> In other network environments, updates for names ending in
dnssd-srp> "default.services.arpa" may be rewritten internally to names with
dnssd-srp> broader visibility.
Our goal with front-end-naming is to provide the "rewritten internally
function".
I found section 2.3.2. Testing using standard RFC2136-compliant servers out
of place. I think it belongs in an appendix?
This dnssd-srp protocol seems like it will work wonderfully within a homenet
(or small to medium sized campus). I think that is the goal.
I don't think it will work as the protocol for a homenet to publish a public
zone to the Internet without some additional security and setup. At least,
that's my feeling at this point.
--
Michael Richardson <[email protected]>, Sandelman Software Works
-= IPv6 IoT consulting =-
signature.asc
Description: PGP signature
_______________________________________________ homenet mailing list [email protected] https://www.ietf.org/mailman/listinfo/homenet
