Skip to main content

Control Options For DNS Client Proxies

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Philip Homburg
Last updated 2024-01-08 (Latest revision 2023-07-07)
Replaces draft-homburg-add-codcp
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


The introduction of many new transport protocols for DNS in recent years (DoT, DoH, DoQ) significantly increases the complexity of DNS stub resolvers that want to support these protocols. A practical way forward is to have a DNS client proxy in the host operating system. This allows applications to communicate using Do53 and still get the privacy benefit from using more secure protocols over the internet. However, such a setup leaves the application with no control over which transport the proxy uses. This document introduces EDNS(0) options that allow a stub resolver to request certain transport and allow the proxy to report capabilities and actual transports that are available.


Philip Homburg

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)