Re: [homenet] DoH??

[Stephen Farrell]

On 18/09/2019 23:51, Ted Lemon wrote:
> Let’s not discuss this here. This is a topic for add. 

Yes. The ADD list was setup for that discussion (and
exploded). A review of it's archive [1] might be eye
opening, if tedious.

Cheers,
S.

[1] https://mailarchive.ietf.org/arch/browse/add/

> 
>> On Sep 18, 2019, at 18:27, Michael Thomas  wrote:
>>
> 
> ___
> homenet mailing list
> homenet@ietf.org
> https://www.ietf.org/mailman/listinfo/homenet
> 


0x5AB2FAF17B172BEA.asc
Description: application/pgp-keys


signature.asc
Description: OpenPGP digital signature
___
homenet mailing list
homenet@ietf.org
https://www.ietf.org/mailman/listinfo/homenet

Re: [homenet] DoH??

[Ted Lemon]

Let’s not discuss this here. This is a topic for add. 

> On Sep 18, 2019, at 18:27, Michael Thomas  wrote:
> 

___
homenet mailing list
homenet@ietf.org
https://www.ietf.org/mailman/listinfo/homenet

Re: [homenet] DoH??

[Michael Thomas]

On 9/18/19 3:12 PM, Ted Lemon wrote:
On Sep 18, 2019, at 6:07 PM, Michael Thomas > wrote:
So I'm a little unclear about the specifics of Firefox using DNS over 
HTTP, but wouldn't this affect homenet naming, or any split horizon 
kind of naming?


In order for DoH to not break lots of things, it has to be implemented 
in such a way that special-use names are not resolved using a global 
resolver, and that VPN-supported names are looked up using the VPN 
resolver.   It would also be nice if there were a way for the homenet 
to signal that a public domain belonging to it is resolved locally, so 
that split-horizon naming on the homenet works correctly.  Similar 
functionality will be required for corporate networks that do 
split-horizon naming.


Yeah, that's pretty much what it seemed to me too. How vetted was this? 
I mean, did it make the rounds in standards-ville, or is this roll your 
own by Mozilla?


I also don't get what the motivation is, and/or problem it's trying to 
solve. Seems pretty scary to have a single point of failure (Cloudflare) 
introduced.


Mike

___
homenet mailing list
homenet@ietf.org
https://www.ietf.org/mailman/listinfo/homenet

Re: [homenet] DoH??

[Stephen Farrell]

Hiya,

On 18/09/2019 23:07, Michael Thomas wrote:
> 
> So I'm a little unclear about the specifics of Firefox using DNS over
> HTTP, but wouldn't this affect homenet naming, or any split horizon kind
> of naming?

FWIW, I just tested with FF nightly in my home n/w for a
name that is locally resolved within net10 but that also
has a global IPv6 address. It worked fine with FF's TRR
mode 2, though there was maybe a short but visible delay
before FF fell back to the system resolver.

So - doesn't have to be a problem.

Cheers,
S.

> 
> Mike
> 
> ___
> homenet mailing list
> homenet@ietf.org
> https://www.ietf.org/mailman/listinfo/homenet
> 


0x5AB2FAF17B172BEA.asc
Description: application/pgp-keys


signature.asc
Description: OpenPGP digital signature
___
homenet mailing list
homenet@ietf.org
https://www.ietf.org/mailman/listinfo/homenet

Re: [homenet] DoH??

[Ted Lemon]

On Sep 18, 2019, at 6:07 PM, Michael Thomas  wrote:
> So I'm a little unclear about the specifics of Firefox using DNS over HTTP, 
> but wouldn't this affect homenet naming, or any split horizon kind of naming?

In order for DoH to not break lots of things, it has to be implemented in such 
a way that special-use names are not resolved using a global resolver, and that 
VPN-supported names are looked up using the VPN resolver.   It would also be 
nice if there were a way for the homenet to signal that a public domain 
belonging to it is resolved locally, so that split-horizon naming on the 
homenet works correctly.  Similar functionality will be required for corporate 
networks that do split-horizon naming.

___
homenet mailing list
homenet@ietf.org
https://www.ietf.org/mailman/listinfo/homenet

[homenet] DoH??

[Michael Thomas]

So I'm a little unclear about the specifics of Firefox using DNS over 
HTTP, but wouldn't this affect homenet naming, or any split horizon kind 
of naming?


Mike

___
homenet mailing list
homenet@ietf.org
https://www.ietf.org/mailman/listinfo/homenet