[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: DNS Qname minimisation

Robert Edmonds writes ("Re: DNS Qname minimisation"):
> DNS qname minimisation is already available in Debian; unbound 1.5.8 in
> testing and jessie-backports has support for it, which can be enabled by
> adding the following config snippet to /etc/unbound/unbound.conf.d/:
> 
>     server:
>         qname-minimisation: yes

Perhaps we should enable it by default ?  Debian testing is a good
place for such things I think.  If the authors/promoters of qname
minimisation think it is ready for deployment soon, then maybe the
Debian unbound maintainers should be consulted.  (Or indeed, unbound
upstream.)

I did have one question for Hugo: is there a conventional optimisation
or compromise in the qname minimisation for ip6.arpa lookups ?
Without such a thing, the large number of labels in an ip6.arpa
lookup, compared to the usually comparatively small number of zone
cuts, would mean a big performance hit.

Eg (picking my server's primary IPv6 address):

0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.3.e.1.0.8.a.b.0.1.0.0.2.ip6.arpa PTR
                                        3.e.1.0.8.a.b.0.1.0.0.2.ip6.arpa SOA
                                                8.a.b.0.1.0.0.2.ip6.arpa SOA
                                                    b.0.1.0.0.2.ip6.arpa SOA
                                                                ip6.arpa SOA

Ian.
Reply to: