At 7:55 +1100 4/1/08, Mark Andrews wrote: > Multiple PTR records scale worse than multiple A records.
That sentence is hard to parse. I looked at the draft again and this thread. The issue is not clear. Yes, you can have multiple PTR records. Yes, there is a limit on how many records of any type can be in an RRset while fitting into the maximum DNS message size. The doc says you should consider the consequences, which is about as accurate a statement as can be given. However maybe more detail should be in the document. Such as: Multiple PTR records can be stored in a single PTR RRset. If a device at an IP address (v4 or v6) has multiple identities with domain names, it would be good to have a PTR for each. However, this is not always practical. In some operational situations, an address may have thousands of domain names holding an address record (A or AAAA) with the address as the value. The number of address records in an PTR set before tripping the upper limit on what can fit on even a TCP carried DNS message is approximately 4000 for A RR only and about 2000 for AAAA RR only. If an address has just a few corresponding forward map records, it is worth entering them all. If an address has many, a better strategy is to enter a few as is needed, adding more only when there is an operational request. > each address records needs a corresponding PTR record. The > only reason we don't see more problems is that people have > been saying that it is a waste of time to have multiple PTR > records. No, I don't think that's the reason. I think we don't see "more problems" is that "it isn't that much of a problem" and possibly "where it could be a problem, people just don't put many in." I don't think it is a waste of time. The two downsides - the very real cap on the number of possible records (as mentioned above) and applications that aren't written correctly enough to handle the situation. >> and apparently you can't have A records for them either. The confusing element here is that this is a case of having - 5000 domains with one A record versus 1 domain with 5000 PTR records It's not 1 domain with 5000 AAAA's => 1 domain with 5000 PTR's. The problem is not symmetric. >> so the actual spec limit is any mixture of RR types that >> will fit into a 64k DNS message on TCP. Right? I suppose so. -- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Edward Lewis +1-571-434-5468 NeuStar Never confuse activity with progress. Activity pays more. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop