draft-ietf-dnsop-default-local-zones-09.txt   draft-ietf-dnsop-default-local-zones-10.txt 
Network Working Group M. Andrews Network Working Group M. Andrews
Internet-Draft ISC Internet-Draft ISC
Intended status: BCP November 19, 2009 Intended status: BCP March 25, 2010
Expires: May 23, 2010 Expires: September 26, 2010
Locally-served DNS Zones Locally-served DNS Zones
draft-ietf-dnsop-default-local-zones-09 draft-ietf-dnsop-default-local-zones-10
Abstract Abstract
Experience with the Domain Name System (DNS) has shown that there are Experience with the Domain Name System (DNS) has shown that there are
a number of DNS zones all iterative resolvers and recursive a number of DNS zones all iterative resolvers and recursive
nameservers should automatically serve, unless configured otherwise. nameservers should automatically serve, unless configured otherwise.
RFC 4193 specifies that this should occur for D.F.IP6.ARPA. This RFC 4193 specifies that this should occur for D.F.IP6.ARPA. This
document extends the practice to cover the IN-ADDR.ARPA zones for RFC document extends the practice to cover the IN-ADDR.ARPA zones for RFC
1918 address space and other well known zones with similar 1918 address space and other well known zones with similar
characteristics. characteristics.
skipping to change at page 1, line 42 skipping to change at page 1, line 42
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
The list of current Internet-Drafts can be accessed at The list of current Internet-Drafts can be accessed at
http://www.ietf.org/ietf/1id-abstracts.txt. http://www.ietf.org/ietf/1id-abstracts.txt.
The list of Internet-Draft Shadow Directories can be accessed at The list of Internet-Draft Shadow Directories can be accessed at
http://www.ietf.org/shadow.html. http://www.ietf.org/shadow.html.
This Internet-Draft will expire on May 23, 2010. This Internet-Draft will expire on September 26, 2010.
Copyright Notice Copyright Notice
Copyright (c) 2009 IETF Trust and the persons identified as the Copyright (c) 2010 IETF Trust and the persons identified as the
document authors. All rights reserved. document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents Provisions Relating to IETF Documents
(http://trustee.ietf.org/license-info) in effect on the date of (http://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents publication of this document. Please review these documents
carefully, as they describe your rights and restrictions with respect carefully, as they describe your rights and restrictions with respect
to this document. Code Components extracted from this document must to this document. Code Components extracted from this document must
include Simplified BSD License text as described in Section 4.e of include Simplified BSD License text as described in Section 4.e of
the Trust Legal Provisions and are provided without warranty as the Trust Legal Provisions and are provided without warranty as
skipping to change at page 3, line 13 skipping to change at page 3, line 13
than English. than English.
Table of Contents Table of Contents
1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3
1.1. Reserved Words . . . . . . . . . . . . . . . . . . . . . . 3 1.1. Reserved Words . . . . . . . . . . . . . . . . . . . . . . 3
2. Effects on sites using RFC 1918 addresses. . . . . . . . . . . 4 2. Effects on sites using RFC 1918 addresses. . . . . . . . . . . 4
3. Changes to Iterative Resolver Behaviour. . . . . . . . . . . . 4 3. Changes to Iterative Resolver Behaviour. . . . . . . . . . . . 4
4. Lists Of Zones Covered . . . . . . . . . . . . . . . . . . . . 5 4. Lists Of Zones Covered . . . . . . . . . . . . . . . . . . . . 5
4.1. RFC1918 Zones . . . . . . . . . . . . . . . . . . . . . . 5 4.1. RFC1918 Zones . . . . . . . . . . . . . . . . . . . . . . 5
4.2. RFC3330 Zones . . . . . . . . . . . . . . . . . . . . . . 6 4.2. RFC3330 and RFC5737 Zones . . . . . . . . . . . . . . . . 6
4.3. Local IPv6 Unicast Addresses . . . . . . . . . . . . . . . 6 4.3. Local IPv6 Unicast Addresses . . . . . . . . . . . . . . . 6
4.4. IPv6 Locally Assigned Local Addresses . . . . . . . . . . 6 4.4. IPv6 Locally Assigned Local Addresses . . . . . . . . . . 7
4.5. IPv6 Link Local Addresses . . . . . . . . . . . . . . . . 7 4.5. IPv6 Link Local Addresses . . . . . . . . . . . . . . . . 7
4.6. IPv6 Example Prefix . . . . . . . . . . . . . . . . . . . 7 4.6. IPv6 Example Prefix . . . . . . . . . . . . . . . . . . . 7
5. Zones that are Out-Of-Scope . . . . . . . . . . . . . . . . . 7 5. Zones that are Out-Of-Scope . . . . . . . . . . . . . . . . . 7
6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 8 6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 8
7. Security Considerations . . . . . . . . . . . . . . . . . . . 8 7. Security Considerations . . . . . . . . . . . . . . . . . . . 8
8. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 9 8. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 9
9. References . . . . . . . . . . . . . . . . . . . . . . . . . . 9 9. References . . . . . . . . . . . . . . . . . . . . . . . . . . 9
9.1. Normative References . . . . . . . . . . . . . . . . . . . 9 9.1. Normative References . . . . . . . . . . . . . . . . . . . 9
9.2. Informative References . . . . . . . . . . . . . . . . . . 10 9.2. Informative References . . . . . . . . . . . . . . . . . . 10
Appendix A. Change History [To Be Removed on Publication] . . . . 10 Appendix A. Change History [To Be Removed on Publication] . . . . 10
A.1. draft-ietf-dnsop-default-local-zones-09.txt . . . . . . . 10 A.1. draft-ietf-dnsop-default-local-zones-10.txt . . . . . . . 10
A.2. draft-ietf-dnsop-default-local-zones-08.txt . . . . . . . 10 A.2. draft-ietf-dnsop-default-local-zones-09.txt . . . . . . . 10
A.3. draft-ietf-dnsop-default-local-zones-07.txt . . . . . . . 10 A.3. draft-ietf-dnsop-default-local-zones-08.txt . . . . . . . 11
A.4. draft-ietf-dnsop-default-local-zones-06.txt . . . . . . . 10 A.4. draft-ietf-dnsop-default-local-zones-07.txt . . . . . . . 11
A.5. draft-ietf-dnsop-default-local-zones-05.txt . . . . . . . 11 A.5. draft-ietf-dnsop-default-local-zones-06.txt . . . . . . . 11
A.6. draft-ietf-dnsop-default-local-zones-04.txt . . . . . . . 11 A.6. draft-ietf-dnsop-default-local-zones-05.txt . . . . . . . 11
A.7. draft-ietf-dnsop-default-local-zones-03.txt . . . . . . . 11 A.7. draft-ietf-dnsop-default-local-zones-04.txt . . . . . . . 11
A.8. draft-ietf-dnsop-default-local-zones-02.txt . . . . . . . 11 A.8. draft-ietf-dnsop-default-local-zones-03.txt . . . . . . . 11
A.9. draft-ietf-dnsop-default-local-zones-01.txt . . . . . . . 11 A.9. draft-ietf-dnsop-default-local-zones-02.txt . . . . . . . 11
A.10. draft-ietf-dnsop-default-local-zones-00.txt . . . . . . . 11 A.10. draft-ietf-dnsop-default-local-zones-01.txt . . . . . . . 11
A.11. draft-andrews-full-service-resolvers-03.txt . . . . . . . 11 A.11. draft-ietf-dnsop-default-local-zones-00.txt . . . . . . . 11
A.12. draft-andrews-full-service-resolvers-02.txt . . . . . . . 12 A.12. draft-andrews-full-service-resolvers-03.txt . . . . . . . 12
A.13. draft-andrews-full-service-resolvers-02.txt . . . . . . . 12
Appendix B. Proposed Status [To Be Removed on Publication] . . . 12 Appendix B. Proposed Status [To Be Removed on Publication] . . . 12
Author's Address . . . . . . . . . . . . . . . . . . . . . . . . . 12 Author's Address . . . . . . . . . . . . . . . . . . . . . . . . . 12
1. Introduction 1. Introduction
Experience with the Domain Name System (DNS, [RFC1034] and [RFC1035]) Experience with the Domain Name System (DNS, [RFC1034] and [RFC1035])
has shown that there are a number of DNS zones that all iterative has shown that there are a number of DNS zones that all iterative
resolvers and recursive nameservers SHOULD automatically serve, resolvers and recursive nameservers SHOULD automatically serve,
unless intentionally configured otherwise. These zones include, but unless intentionally configured otherwise. These zones include, but
are not limited to, the IN-ADDR.ARPA zones for the address space are not limited to, the IN-ADDR.ARPA zones for the address space
skipping to change at page 7, line 5 skipping to change at page 7, line 5
| 25.172.IN-ADDR.ARPA | | 25.172.IN-ADDR.ARPA |
| 26.172.IN-ADDR.ARPA | | 26.172.IN-ADDR.ARPA |
| 27.172.IN-ADDR.ARPA | | 27.172.IN-ADDR.ARPA |
| 28.172.IN-ADDR.ARPA | | 28.172.IN-ADDR.ARPA |
| 29.172.IN-ADDR.ARPA | | 29.172.IN-ADDR.ARPA |
| 30.172.IN-ADDR.ARPA | | 30.172.IN-ADDR.ARPA |
| 31.172.IN-ADDR.ARPA | | 31.172.IN-ADDR.ARPA |
| 168.192.IN-ADDR.ARPA | | 168.192.IN-ADDR.ARPA |
+----------------------+ +----------------------+
4.2. RFC3330 Zones 4.2. RFC3330 and RFC5737 Zones
The following zones correspond to those address ranges from [RFC3330] The following zones correspond to those address ranges from [RFC3330]
that are not expected to appear as source or destination addresses on and [RFC5737] that are not expected to appear as source or
the public Internet and to not have a unique name to associate with. destination addresses on the public Internet and to not have a unique
name to associate with.
The recommendation to serve an empty zone 127.IN-ADDR.ARPA is not a The recommendation to serve an empty zone 127.IN-ADDR.ARPA is not a
attempt to discourage any practice to provide a PTR RR for attempt to discourage any practice to provide a PTR RR for
1.0.0.127.IN-ADDR.ARPA locally. In fact, a meaningful reverse 1.0.0.127.IN-ADDR.ARPA locally. In fact, a meaningful reverse
mapping should exist, but the exact setup is out of the scope of this mapping should exist, but the exact setup is out of the scope of this
document. Similar logic applies to the reverse mapping for ::1 document. Similar logic applies to the reverse mapping for ::1
(Section 4.3). The recommendations made here simply assume no other (Section 4.3). The recommendations made here simply assume no other
coverage for these domains exists. coverage for these domains exists.
+------------------------------+------------------------+ +------------------------------+------------------------+
| Zone | Description | | Zone | Description |
+------------------------------+------------------------+ +------------------------------+------------------------+
| 0.IN-ADDR.ARPA | IPv4 "THIS" NETWORK | | 0.IN-ADDR.ARPA | IPv4 "THIS" NETWORK |
| 127.IN-ADDR.ARPA | IPv4 LOOP-BACK NETWORK | | 127.IN-ADDR.ARPA | IPv4 LOOP-BACK NETWORK |
| 254.169.IN-ADDR.ARPA | IPv4 LINK LOCAL | | 254.169.IN-ADDR.ARPA | IPv4 LINK LOCAL |
| 2.0.192.IN-ADDR.ARPA | IPv4 TEST NET | | 2.0.192.IN-ADDR.ARPA | IPv4 TEST NET 1 |
| 100.51.198.IN-ADDR.ARPA | IPv4 TEST NET 2 |
| 113.0.203.IN-ADDR.ARPA | IPv4 TEST NET 3 |
| 255.255.255.255.IN-ADDR.ARPA | IPv4 BROADCAST | | 255.255.255.255.IN-ADDR.ARPA | IPv4 BROADCAST |
+------------------------------+------------------------+ +------------------------------+------------------------+
4.3. Local IPv6 Unicast Addresses 4.3. Local IPv6 Unicast Addresses
The reverse mappings ([RFC3596], Section 2.5 IP6.ARPA Domain) for the The reverse mappings ([RFC3596], Section 2.5 IP6.ARPA Domain) for the
IPv6 Unspecified (::) and Loopback (::1) addresses ([RFC4291], IPv6 Unspecified (::) and Loopback (::1) addresses ([RFC4291],
Sections 2.4, 2.5.2 and 2.5.3) are covered by these two zones: Sections 2.4, 2.5.2 and 2.5.3) are covered by these two zones:
+-------------------------------------------+ +-------------------------------------------+
skipping to change at page 11, line 32 skipping to change at page 11, line 35
Abley, J. and W. Maton, "I'm Being Attacked by Abley, J. and W. Maton, "I'm Being Attacked by
PRISONER.IANA.ORG!", PRISONER.IANA.ORG!",
draft-ietf-dnsop-as112-under-attack-help-help-01 (work in draft-ietf-dnsop-as112-under-attack-help-help-01 (work in
progress), November 2007. progress), November 2007.
[RFC3330] "Special-Use IPv4 Addresses", RFC 3330, September 2002. [RFC3330] "Special-Use IPv4 Addresses", RFC 3330, September 2002.
[RFC3849] Huston, G., Lord, A., and P. Smith, "IPv6 Address Prefix [RFC3849] Huston, G., Lord, A., and P. Smith, "IPv6 Address Prefix
Reserved for Documentation", RFC 3849, July 2004. Reserved for Documentation", RFC 3849, July 2004.
[RFC5737] Arkko, J., Cotton, M., and L. Vergoda, "IPv4 Address
Blocks Reserved for Documentation", RFC 5737,
January 2010.
Appendix A. Change History [To Be Removed on Publication] Appendix A. Change History [To Be Removed on Publication]
A.1. draft-ietf-dnsop-default-local-zones-09.txt A.1. draft-ietf-dnsop-default-local-zones-10.txt
added RFC 5737 zones
A.2. draft-ietf-dnsop-default-local-zones-09.txt
refresh awaiting writeup refresh awaiting writeup
A.2. draft-ietf-dnsop-default-local-zones-08.txt A.3. draft-ietf-dnsop-default-local-zones-08.txt
editorial, reference updates editorial, reference updates
A.3. draft-ietf-dnsop-default-local-zones-07.txt A.4. draft-ietf-dnsop-default-local-zones-07.txt
none, expiry prevention none, expiry prevention
A.4. draft-ietf-dnsop-default-local-zones-06.txt A.5. draft-ietf-dnsop-default-local-zones-06.txt
add IPv6 example prefix add IPv6 example prefix
A.5. draft-ietf-dnsop-default-local-zones-05.txt A.6. draft-ietf-dnsop-default-local-zones-05.txt
none, expiry prevention none, expiry prevention
A.6. draft-ietf-dnsop-default-local-zones-04.txt A.7. draft-ietf-dnsop-default-local-zones-04.txt
Centrally Assigned Local addresses -> Non-Locally Assigned Local Centrally Assigned Local addresses -> Non-Locally Assigned Local
address address
A.7. draft-ietf-dnsop-default-local-zones-03.txt A.8. draft-ietf-dnsop-default-local-zones-03.txt
expanded section 4 descriptions expanded section 4 descriptions
Added references [RFC2136], [RFC3596], Added references [RFC2136], [RFC3596],
[I-D.draft-ietf-dnsop-as112-ops] and [I-D.draft-ietf-dnsop-as112-ops] and
[I-D.draft-ietf-dnsop-as112-under-attack-help-help]. [I-D.draft-ietf-dnsop-as112-under-attack-help-help].
Revised language. Revised language.
A.8. draft-ietf-dnsop-default-local-zones-02.txt A.9. draft-ietf-dnsop-default-local-zones-02.txt
RNAME now "nobody.invalid." RNAME now "nobody.invalid."
Revised language. Revised language.
A.9. draft-ietf-dnsop-default-local-zones-01.txt A.10. draft-ietf-dnsop-default-local-zones-01.txt
Revised impact description. Revised impact description.
Updated to reflect change in IP6.INT status. Updated to reflect change in IP6.INT status.
A.10. draft-ietf-dnsop-default-local-zones-00.txt A.11. draft-ietf-dnsop-default-local-zones-00.txt
Adopted by DNSOP. Adopted by DNSOP.
"Author's Note" re-titled "Zones that are Out-Of-Scope" "Author's Note" re-titled "Zones that are Out-Of-Scope"
Add note that these zone are expected to seed the IANA registry. Add note that these zone are expected to seed the IANA registry.
Title changed. Title changed.
A.11. draft-andrews-full-service-resolvers-03.txt A.12. draft-andrews-full-service-resolvers-03.txt
Added "Proposed Status". Added "Proposed Status".
A.12. draft-andrews-full-service-resolvers-02.txt A.13. draft-andrews-full-service-resolvers-02.txt
Added 0.IN-ADDR.ARPA. Added 0.IN-ADDR.ARPA.
Appendix B. Proposed Status [To Be Removed on Publication] Appendix B. Proposed Status [To Be Removed on Publication]
This Internet-Draft is being submitted for eventual publication as an This Internet-Draft is being submitted for eventual publication as an
RFC with a proposed status of Best Current Practice. RFC with a proposed status of Best Current Practice.
Author's Address Author's Address
Mark P. Andrews Mark P. Andrews
Internet Systems Consortium Internet Systems Consortium
950 Charter Street 950 Charter Street
Redwood City, CA 94063 Redwood City, CA 94063
US US
Email: Mark_Andrews@isc.org Email: marka@isc.org
 End of changes. 25 change blocks. 
36 lines changed or deleted 47 lines changed or added

This html diff was produced by rfcdiff 1.38. The latest version is available from http://tools.ietf.org/tools/rfcdiff/