Javascript disabled? Like other modern websites, the IETF Datatracker relies on Javascript. Please enable Javascript for full functionality.

Structured Error Data for Filtered DNS
draft-ietf-dnsop-structured-dns-error-15

Versions:

Document	Type	Expired Internet-Draft (dnsop WG) Expired & archived
	Authors	Dan Wing , Tirumaleswar Reddy.K , Neil Cook , Mohamed Boucadair
	Last updated	2025-11-06 (Latest revision 2025-05-05)
	Replaces	draft-wing-dnsop-structured-dns-error-page
	RFC stream	Internet Engineering Task Force (IETF)
	Intended RFC status	Proposed Standard
	Formats	txt html xml htmlized bibtex bibxml
	Reviews	OPSDIR IETF Last Call review by Tim Chown Not ready GENART IETF Last Call review by Stewart Bryant Ready w/nits DNSDIR IETF Last Call review (of -13) by Di Ma Ready ARTART IETF Last Call review (of -12) by Paul Kyzivat On the right track DNSDIR IETF Last Call review (of -12) by Matt Brown Ready SECDIR Early review (of -03) by Joseph Salowey Has issues DNSDIR Early review (of -03) by Matt Brown Almost ready DNSDIR Early review (of -03) by Di Ma Ready
	Additional resources	GitHub Repository Mailing list discussion
Stream	WG state	WG Document
	Associated WG milestone	Dec 2025 Submit Structured Error Data for Filtered DNS to the IESG for Publication as Proposed Standard
	Document shepherd	Benno Overeinder
	Shepherd write-up	Show Last changed 2025-04-07
IESG	IESG state	Expired
	Consensus boilerplate	Yes
	Telechat date	(None)
	Responsible AD	Éric Vyncke
	Send notices to	benno@NLnetLabs.nl
IANA	IANA review state	Version Changed - Review Needed

Email authors Email WG IPR References Referenced by Nits Search email archive

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

txt html xml htmlized bibtex bibxml

Abstract

DNS filtering is widely deployed for various reasons, including network security. However, filtered DNS responses lack structured information for end users to understand the reason for the filtering. Existing mechanisms to provide explanatory details to end users cause harm especially if the blocked DNS response is for HTTPS resources. This document updates RFC 8914 by signaling client support for structuring the EXTRA-TEXT field of the Extended DNS Error to provide details on the DNS filtering. Such details can be parsed by the client and displayed, logged, or used for other purposes.

Authors

Dan Wing
Tirumaleswar Reddy.K
Neil Cook
Mohamed Boucadair

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)

Structured Error Data for Filtered DNS draft-ietf-dnsop-structured-dns-error-15

Structured Error Data for Filtered DNS
draft-ietf-dnsop-structured-dns-error-15