[89939] in North American Network Operators' Group
Re: How to handle AAAA query for v4 only host
daemon@ATHENA.MIT.EDU (Owen DeLong)
Wed Apr 12 19:55:34 2006
Date: Wed, 12 Apr 2006 19:55:01 -0400
From: Owen DeLong <owen@delong.com>
To: Mark Smith <nanog@fa1c52f96c54f7450e1ffb215f29991e.nosense.org>
Cc: nanog@merit.edu
In-Reply-To: <20060413081327.24b4a5ac.nanog@fa1c52f96c54f7450e1ffb215f29991e.nosense.org>
Errors-To: owner-nanog@merit.edu
--==========141E3E992232DA755DF8==========
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
--On April 13, 2006 8:13:27 AM +0930 Mark Smith=20
<nanog@fa1c52f96c54f7450e1ffb215f29991e.nosense.org> wrote:
> On Wed, 12 Apr 2006 17:27:54 -0400
> Owen DeLong <owen@delong.com> wrote:
>
>> Apologies if anyone thinks this does not require coordination or is
>> somehow not operational.
>>
>> However, I have a situation where some nameservers for which I am
>> responsible
>> are receiving AAAA queries for hosts for which we are authoritative. We
>> return the SOA only as it seems we are supposed to, but, we are seeing a
>> significant delay before we get an A query back from the resolver, =
which,
>> we believe represents a significant delay for the end user in getting to
>> the web page in question.
>>
>
> I'd have thought you were supposed to return a record not found error,
> which would then cause the remote resolver to immediately revert to
> performing an A query.
>
Strangely enough, RFCs 1866, 3596, and 4074 seem to specifically say
this is a bad thing.
>> Is there a better way to answer an AAAA query for a v4 only host? Is it
>> permitted and/or desirable to return a 6to4 or IPv4-Mapped address?
>> Is there some other preferable thing to return?
>>
>
> As long as you don't not respond, like doublelclick don't or didn't
> used to. Very frustrating waiting for AAAA queries to timeout before a
> page will fully load.
Nope... As near as I can tell, responding with SOA only data is the
right thing to do. FWIW, that's what f.root-servers.net seems to do
as well.
Owen
--==========141E3E992232DA755DF8==========
Content-Type: application/pgp-signature
Content-Transfer-Encoding: 7bit
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (Darwin)
iD8DBQFEPZNYn5zKWQ/iqj0RAtzfAJ9ZvTlV30v2I5WvSajpIUHOMlLIIgCfbyvI
PDDQQRmoOXWias5ws5lGy6U=
=PiBK
-----END PGP SIGNATURE-----
--==========141E3E992232DA755DF8==========--
