Skip to main content

Last Call Review of draft-ietf-masque-connect-ip-08

Request Review of draft-ietf-masque-connect-ip
Requested revision No specific revision (document currently at 08)
Type Last Call Review
Team DNS Directorate (dnsdir)
Deadline 2023-03-15
Requested 2023-03-01
Requested by Éric Vyncke
Authors Tommy Pauly , David Schinazi , Alex Chernyakhovsky , Mirja Kühlewind , Magnus Westerlund
I-D last updated 2023-03-12
Completed reviews Intdir Early review of -07 by Timothy Winters (diff)
Dnsdir Last Call review of -08 by R. (Miek) Gieben
Genart Last Call review of -08 by Vijay K. Gurbani
Artart Last Call review of -08 by Jean Mahoney
Opsdir Last Call review of -08 by Linda Dunbar
Assignment Reviewer R. (Miek) Gieben
State Completed
Review review-ietf-masque-connect-ip-08-dnsdir-lc-gieben-2023-03-12
Posted at
Reviewed revision 08
Result Ready with Issues
Completed 2023-03-12
Hello, I've reviewed draft-ietf-masque-connect-ip specifically for DNS issues.
This is mostly contained in a single section: 4.1: IP Proxy Handling.

In that section a two questions popped up when the 'target' variable is a DNS
name and the IP proxy must then perform a DNS lookup:

- Should the IP proxy care about the TTL of the looked up name? I.e. is it OK
if the TTL expires? Potentially the DNS name can then point to a different IP
address? - Should the IP Proxy do a DNSSEC lookup or a plain DNS lookup? Should
this be configurable or can the IP proxy just not care?