<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2900.3157" name=GENERATOR></HEAD>
<BODY
style="WORD-WRAP: break-word; khtml-nbsp-mode: space; khtml-line-break: after-white-space">
<DIV><SPAN class=186125704-11092007><FONT face=Arial color=#0000ff size=2>Well,
as Randy pointed out ...maybe I am leaping a bit. But I have had circular
conversations where that wasnt viewed as such a leap. Be it strictly
routing or dns success/failures, they both have fallen into the "it
shouldnt be dictated by ARIN" conversations. And I guess pointing out in
an obviouse way that they shouldnt be in the same conversation is needed.
So...thanks Randy for getting me thinking straight again.</FONT></SPAN></DIV>
<DIV><SPAN class=186125704-11092007><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=186125704-11092007><FONT face=Arial color=#0000ff size=2>So to
your point John, I would say its worth writing up and submitting it.
Clearly you have good rational and a need. I would be interested to
see how many people would support it and what type of Con's would be pointed
out. </FONT></SPAN></DIV>
<DIV><SPAN class=186125704-11092007><FONT face=Arial color=#0000ff
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=186125704-11092007><FONT face=Arial color=#0000ff
size=2>Cheers!</FONT></SPAN></DIV>
<DIV><SPAN class=186125704-11092007><FONT face=Arial color=#0000ff
size=2>Marla</FONT></SPAN></DIV>
<DIV><SPAN class=186125704-11092007></SPAN><FONT face=Tahoma><BR><FONT
size=2><SPAN class=186125704-11092007><FONT face=Arial color=#0000ff>[Azinger,
Marla] </FONT></SPAN>-----Original Message-----<BR><B>From:</B>
ppml-bounces@arin.net [mailto:ppml-bounces@arin.net]<B>On Behalf Of </B>John Von
Essen<BR><B>Sent:</B> Monday, September 10, 2007 9:38 PM<BR><B>To:</B> Public
Policy Mailing List<BR><B>Subject:</B> Re: [ppml] Comments on ARIN's reverse DNS
mapping policy<BR><BR></FONT></DIV></FONT>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
<DIV>Randy - Thanks, you are the first person to not write this off as a "find
another ISP" comment. </DIV>
<DIV><BR class=khtml-block-placeholder></DIV>
<DIV>Maria, I understand your comments, but consider this... The current
policy on reverse dns mapping "almost" does the job - it just needs to go a
tiny bit further.
<DIV><BR class=khtml-block-placeholder></DIV>
<DIV>Current policy dictates that you have to map an in-addr.arpa zone for
your prefix in order for your nameservers to not be considered lame.</DIV>
<DIV><BR class=khtml-block-placeholder></DIV>
<DIV>Problem is, an AS only has to properly map a single in-addr.arpa to
satisfy that requirement. What I am saying is just go a bit further, and have
policy dictate that the AS must properly map ALL in-addr.arpa's for advertised
prefixes in order for their nameservers to not be considered lame. Seems
simple enough.</DIV>
<DIV><BR class=khtml-block-placeholder></DIV>
<DIV>The problem goes beyond the ISP-to-customer scenario. Take Verizon DSL,
what if they didn't map the in-addr.arpa's for all their DSL IP's - thats
probably 10 or so /16's easily. That would cause tons of problems for various
3rd party organizations all throughout the internet; people like vonage
(sip traffic), gmail, postini, or any large smtp environment or protocol
dependent on reverse DNS.</DIV>
<DIV><BR class=khtml-block-placeholder></DIV>
<DIV>But the current policy would not consider Verizon's reverse DNS servers
as being lame. Because even though there are 1000's of in-addr.arpa zones not
mapped (thereby causing excessive timeout on resolvers throughout the world),
they do have one mapped to meet the minimum ARIN requirement for non-lameness.
That simply doesn't make sense.</DIV>
<DIV><BR class=khtml-block-placeholder></DIV>
<DIV>The threat of one's reverse DNS server being declared lame is the only
way to ensure proper reverse DNS mapping. I dont see why 100% enforcement
across all advertised prefixes for a given AS is a problem.</DIV>
<DIV><BR class=khtml-block-placeholder></DIV>
<DIV>Lets not forget that reverse DNS plays an important role in the proper
operation of many protocols throughout the internet, and one of ARINs most
important jobs is delegation of reverse dns authority. ARIN has a
responsibility to make sure that the DNS server they are delegating reverse
authority too is maintained to at least a minimum level of efficiency.</DIV>
<DIV><BR class=khtml-block-placeholder></DIV>
<DIV>-John</DIV>
<DIV><BR class=khtml-block-placeholder></DIV></DIV>
<DIV><BR>
<DIV>
<DIV>On Sep 11, 2007, at 12:05 AM, Randy Bush wrote:</DIV><BR
class=Apple-interchange-newline>
<BLOCKQUOTE type="cite">
<BLOCKQUOTE type="cite">
<DIV style="MARGIN: 0px">I understand your desire to make this an ARIN
policy.<SPAN class=Apple-converted-space> </SPAN>However, it</DIV>
<DIV style="MARGIN: 0px">has long been a position of the ARIN Community
(for the most part)</DIV>
<DIV style="MARGIN: 0px">that ARIN policy is not to dictate or guarantee
routing.</DIV></BLOCKQUOTE>
<DIV style="MIN-HEIGHT: 14px; MARGIN: 0px"><BR></DIV>
<DIV style="MARGIN: 0px">perhaps re-reading the OP's post would reveal that
nothing about routing</DIV>
<DIV style="MARGIN: 0px">is mentioned.</DIV>
<DIV style="MIN-HEIGHT: 14px; MARGIN: 0px"><BR></DIV>
<DIV style="MARGIN: 0px">my guess is that you are making an inference from
routing to reverse</DIV>
<DIV style="MARGIN: 0px">dns.<SPAN class=Apple-converted-space>
</SPAN>but such a leap may not be completely defensible, as reverse
dns</DIV>
<DIV style="MARGIN: 0px">is something about which arin does have policy,
just not the policy</DIV>
<DIV style="MARGIN: 0px">which i think the OP wants.</DIV>
<DIV style="MIN-HEIGHT: 14px; MARGIN: 0px"><BR></DIV>
<DIV style="MARGIN: 0px">many fora have looked at reverse mapping policy and
not made much</DIV>
<DIV style="MARGIN: 0px">progress.<SPAN class=Apple-converted-space>
</SPAN>this is mostly due to a large and loud contingent of "who</DIV>
<DIV style="MARGIN: 0px">cares?<SPAN class=Apple-converted-space>
</SPAN>it does not matter.<SPAN class=Apple-converted-space>
</SPAN>those who check are <bleep>s.<SPAN
class=Apple-converted-space> </SPAN>etc."</DIV>
<DIV style="MIN-HEIGHT: 14px; MARGIN: 0px"><BR></DIV>
<DIV style="MARGIN: 0px">the problem is that it is the user (that silly
person who pays all our</DIV>
<DIV style="MARGIN: 0px">salaries) who gets screwed, as you can see from the
whining of this</DIV>
<DIV style="MARGIN: 0px">particular screwee.<SPAN
class=Apple-converted-space> </SPAN>most do not know why they get long
hangs when doing</DIV>
<DIV style="MARGIN: 0px">simple things, they think crap is normal.<SPAN
class=Apple-converted-space> </SPAN>perhaps it should not be.</DIV>
<DIV style="MIN-HEIGHT: 14px; MARGIN: 0px"><BR></DIV>
<DIV style="MARGIN: 0px">randy</DIV></BLOCKQUOTE></DIV><BR>
<DIV><SPAN class=Apple-style-span
style="WORD-SPACING: 0px; FONT: 12px Helvetica; TEXT-TRANSFORM: none; COLOR: rgb(0,0,0); TEXT-INDENT: 0px; WHITE-SPACE: normal; LETTER-SPACING: normal; BORDER-COLLAPSE: separate; border-spacing: 0px 0px; khtml-text-decorations-in-effect: none; apple-text-size-adjust: auto; orphans: 2; widows: 2"><SPAN
class=Apple-style-span
style="WORD-SPACING: 0px; FONT: 12px Helvetica; TEXT-TRANSFORM: none; COLOR: rgb(0,0,0); TEXT-INDENT: 0px; WHITE-SPACE: normal; LETTER-SPACING: normal; BORDER-COLLAPSE: separate; border-spacing: 0px 0px; khtml-text-decorations-in-effect: none; apple-text-size-adjust: auto; orphans: 2; widows: 2"><SPAN
class=Apple-style-span
style="WORD-SPACING: 0px; FONT: 12px Helvetica; TEXT-TRANSFORM: none; COLOR: rgb(0,0,0); TEXT-INDENT: 0px; WHITE-SPACE: normal; LETTER-SPACING: normal; BORDER-COLLAPSE: separate; border-spacing: 0px 0px; khtml-text-decorations-in-effect: none; apple-text-size-adjust: auto; orphans: 2; widows: 2"><SPAN
class=Apple-style-span
style="WORD-SPACING: 0px; FONT: 12px Helvetica; TEXT-TRANSFORM: none; COLOR: rgb(0,0,0); TEXT-INDENT: 0px; WHITE-SPACE: normal; LETTER-SPACING: normal; BORDER-COLLAPSE: separate; border-spacing: 0px 0px; khtml-text-decorations-in-effect: none; apple-text-size-adjust: auto; orphans: 2; widows: 2">
<DIV>Thanks, </DIV>
<DIV>John Von Essen</DIV>
<DIV>(800) 248-1736 ext 100</DIV>
<DIV><A href="mailto:john@quonix.net">john@quonix.net</A></DIV><BR
class=Apple-interchange-newline></SPAN></SPAN></SPAN></SPAN></DIV><BR></DIV></BLOCKQUOTE></BODY></HTML>