Skip to main content

Client Subnet in DNS Queries

Approval announcement
Draft of message to be sent after approval:


From: The IESG <>
To: "IETF-Announce" <>
Cc: "Suzanne Woolf" <>,,,,, "The IESG" <>,,
Subject: Document Action: 'Client Subnet in DNS Queries' to Informational RFC (draft-ietf-dnsop-edns-client-subnet-07.txt)

The IESG has approved the following document:
- 'Client Subnet in DNS Queries'
  (draft-ietf-dnsop-edns-client-subnet-07.txt) as Informational RFC

This document is the product of the Domain Name System Operations Working

The IESG contact persons are Benoit Claise and Joel Jaeggli.

A URL of this Internet Draft is:

Ballot Text

Technical Summary

 This draft defines an EDNS0 extension to carry information about the
 network that originated a DNS query, and the network for which the
 subsequent response can be cached.

Working Group Summary

This draft originally showed up in dnsext working group and was highly criticized and eventually dropped.   Since then, dnsext closed down, the ability to get EDNS option codes because a simple expert review process and not Internet Standard, and the scope of this document was changed to document what *currently* exists in the world, and how it behaves. 

The extensive security writeup, several notes about privacy, and a number of implementation and operational notes included in the text were key in getting consensus support to publish the document.

Document Quality

There are security issues with this version, as raised by various people.  They are correct, and the intent is not to correct the security flaws with this document, but to describe how this option behaves currently.  It is suggested a new version will be worked on in a year which addresses the security issues, and addresses other issues about this option.


Document Shepherd:   Suzanne Woolf
Area Director:       Joel Jaggeli

RFC Editor Note