Re: [DNSOP] RFC7720 and AXFR

2018-10-28 Thread Evan Hunt
On Sun, Oct 28, 2018 at 11:05:17AM -0600, Grant Taylor wrote: > Does root zone local mirroring require that the zone comes from the > lettered root servers themselves? Or could it come from another server > with the root zone? Possibly a server that one or more operators set up > specifically

Re: [DNSOP] RFC7720 and AXFR

2018-10-28 Thread A. Schulze
Am 28.10.18 um 18:14 schrieb Paul Vixie: > there is no need to make production AXFR queries for the root zone from > "real" root servers any more. I agree to separate production and AXFR services. A formal statement of ICANN *which is not limited to l.root-servers.net.* would make things

Re: [DNSOP] RFC7720 and AXFR

2018-10-28 Thread Paul Vixie
Evan Hunt wrote: I've been assured by ISC folks that we'll always serve AXFR on F, but I don't know if that commitment is in writing, nor whether the other roots that currently support it have made any promises to keep doing so. IMHO it would be nice if all 13 letters provided AXFR

Re: [DNSOP] RFC7720 and AXFR

2018-10-28 Thread Grant Taylor
On 10/28/2018 10:44 AM, Evan Hunt wrote: As a relatively new consideration, root zone local mirroring (RFC 7706) depends on at least a subset of root servers being able to provide the zone via AXFR. Does root zone local mirroring require that the zone comes from the lettered root servers

Re: [DNSOP] RFC7720 and AXFR

2018-10-28 Thread Evan Hunt
On Sun, Oct 28, 2018 at 01:32:51PM +0100, A. Schulze wrote: > RFC 2870 (Root Name Server Operational Requirements) say > > 2.7 Root servers SHOULD NOT answer AXFR, or other zone transfer, > queries from clients other than other root servers. > > The update, RFC 7720 (DNS Root

Re: [DNSOP] RFC7720 and AXFR

2018-10-28 Thread Jaap Akkerhuis
Mukund Sivaraman writes: > There's no requirement for AXFR and some root letters don't serve > AXFR. E.g., L and M don't whereas F does. > For AXFR from L, see jaap ___ DNSOP mailing list

Re: [DNSOP] RFC7720 and AXFR

2018-10-28 Thread Mukund Sivaraman
On Sun, Oct 28, 2018 at 01:32:51PM +0100, A. Schulze wrote: > Hello, > > RFC 2870 (Root Name Server Operational Requirements) say > > 2.7 Root servers SHOULD NOT answer AXFR, or other zone transfer, > queries from clients other than other root servers. > > The update, RFC 7720

[DNSOP] RFC7720 and AXFR

2018-10-28 Thread A. Schulze
Hello, RFC 2870 (Root Name Server Operational Requirements) say 2.7 Root servers SHOULD NOT answer AXFR, or other zone transfer, queries from clients other than other root servers. The update, RFC 7720 (DNS Root Name Service Protocol and Deployment Requirements) don't even