> One thing I haven't seen discussed in the GUPI/GUSL threads is > how folks envision they and DNS to fit together for the AAAA lookups > especially when GUPI is used for private interconnects between sites > (whether it is site-to-site or goes through some ISPs through private > arrangements).
I do not believe it is either necessary or appropriate to have DNS provide only addresses that are reachable by the party making the query. Nor should DNS be used as a mechanism for trying to communicate policy. It is not reasonable to assume that the party making the query is the one that will be using the results of that query. Nor is DNS capable of keeping track of who can talk to whom. And for that matter, applications expect consistent behavior from DNS. The results of DNS queries should be consistent everywhere. If DNS returns addresses for a service that are not reachable, then the client will find that out when it is unable to reach that service (hopefully via an ICMP "prohibited" response rather than via a timeout). Keith -- I tried enlightenment but it kept crashing. -------------------------------------------------------------------- IETF IPng Working Group Mailing List IPng Home Page: http://playground.sun.com/ipng FTP archive: ftp://playground.sun.com/pub/ipng Direct all administrative requests to [EMAIL PROTECTED] --------------------------------------------------------------------
