Individual Submission W. Sotomayor
Internet-Draft NRC-CNRC
Intended status: Best Current Practice July 28, 2011
Expires: January 29, 2012

Additional IPv4 Delegations for AS112
draft-sotomayor-as112-ipv4-cull-01

Abstract

This is a direction to IANA concerning the delegation of certain additional IPv4 zones to the AS112 project.

Status of this Memo

This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79.

Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet- Drafts is at http://datatracker.ietf.org/drafts/current/.

Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress."

This Internet-Draft will expire on January 29, 2012.

Copyright Notice

Copyright (c) 2011 IETF Trust and the persons identified as the document authors. All rights reserved.

This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (http://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Simplified BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Simplified BSD License.


Table of Contents

1. Introduction

This is a direction to IANA concerning the delegation of certain additional IPv4 zones to the AS112 Project [RFC6304] which operates in an anycast cloud [RFC4786].

2. Reverse DNS Delegation, Local-Use and Test Addresses

Work documenting special use addresses [RFC5735] have appeared containing good candidates for inclusion with the existing delegations to the AS112 Project. These local and special use addresses have now been captured and identified for Domain Name System (DNS [RFC1034] and [RFC1035]) zone administrators to curtail leaking queries in [RFC6303].

Additionally, [RFC5737] identifies a short listing of IPv4 address blocks for use in documentation. These too should be considered for delegation to the AS112 Project.

Thus the purpose of this memo is to effectively signal to the AS112 Project [RFC6304] that it should reflect the efforts of [RFC6303] and follow directives and delegations subsequently issued as described in section 6.

It is interesting to note that while the focus has largely been on the use of [RFC1918] addresses, some addresses (such as those first enumerated within [RFC1912]) have as of late also been the subject of [RFC6303] .

3. IANA Considerations

As per the provisions of [RFC3596], this document recommends the IAB to direct IANA to delegate the following IN-ADDR.ARPA reverse DNS zones to the AS112 project [RFC6304]:

              0.in-addr.arpa (IPv4 "This" Network)
            127.in-addr.arpa (IPv4 Loop-Back Network)
        2.0.192.in-addr.arpa (IPv4 Test Net 1)
     100.51.198.in-addr.arpa (IPv4 Test Net 2)
      113.0.203.in-addr.arpa (IPv4 Test Net 3)
255.255.255.255.in-addr.arpa (IPv4 Broadcast)

AS112 project servers should add these zones to their configuration, and terminate queries efficiently inside their service infrastructure.

This delegation instruction is subject to further direction in the future from the IAB to IANA, as per the provisions of [RFC3596].

4. Security Considerations

The Security Considerations described in [RFC6304] also apply to local-use IPv4 addresses, and should be considered in the context of the use of these addresses.

Security administrators as well as general support personnel who are involved in the operations of networked devices may also find the information found in the companion document [RFC6305] quite helpful.

DNS queries may well identify the location of deployment of IPv4 enabled equipment in private contexts, particularly when the reverse queries relate to local-use IPv4 addresses. While operators of the DNS reverse servers should respect the privacy of data relating to individual queries made to these reverse address servers, the unintentional leakage of information beyond its intended scope of use and circulation represents a potential threat to the security of a local private network. This direction to delegate these local-use IPv4 reverse address sub-domains does not substantially change the security risks of information leakage from private environments.

5. Acknowledgements

The author would like to acknowledge the efforts of Mark P. Andrews for preparing the work related to serving certain DNS zones locally and George Michaelson and Geoff Huston for their work [I-D.michaelson-as112-ipv6] in setting the example for a template to be used by the AS112 Project as a direction for the IANA.

The author would also like to thank Joe Abley, Marco d'Itri, Nick Hilliard and Paul Vixie for their feedback.

6. References

6.1. Normative References

[RFC1034] Mockapetris, P., "Domain names - concepts and facilities", STD 13, RFC 1034, November 1987.

6.2. Informative References

[RFC1035] Mockapetris, P., "Domain names - implementation and specification", STD 13, RFC 1035, November 1987.
[RFC1912] Barr, D., "Common DNS Operational and Configuration Errors", RFC 1912, February 1996.
[RFC1918] Rekhter, Y., Moskowitz, R., Karrenberg, D., Groot, G. and E. Lear, "Address Allocation for Private Internets", BCP 5, RFC 1918, February 1996.
[RFC3596] Thomson, S., Huitema, C., Ksinant, V. and M. Souissi, "DNS Extensions to Support IP Version 6", RFC 3596, October 2003.
[RFC4786] Abley, J. and K. Lindqvist, "Operation of Anycast Services", BCP 126, RFC 4786, December 2006.
[RFC5735] Cotton, M. and L. Vegoda, "Special Use IPv4 Addresses", BCP 153, RFC 5735, January 2010.
[RFC5737] Arkko, J., Cotton, M. and L. Vegoda, "IPv4 Address Blocks Reserved for Documentation", RFC 5737, January 2010.
[RFC6303] Andrews, M., "Locally Served DNS Zones", BCP 163, RFC 6303, July 2011.
[RFC6304] Abley, J. and W. Maton, "AS112 Nameserver Operations", RFC 6304, July 2011.
[RFC6305] Abley, J. and W. Maton, "I'm Being Attacked by PRISONER.IANA.ORG!", RFC 6305, July 2011.
[I-D.michaelson-as112-ipv6] Michaelson, G, Huston, G, Abley, J and W Maton, "AS112 Nameserver Delegations for IPv6", Internet-Draft draft-michaelson-as112-ipv6-02, September 2011.

Appendix A. Change History

This section to be removed prior to publication.

01
Subsequent draft split into 2, this one circulated as draft-sotomayor-as112-ipv4-cull-01 as an IANA-only instruction and draft-sotomayor-as112-maint-00 as further AS112 considerations and maintenance.
00
Initial draft, circulated as draft-sotomayor-as112-ipv4-cull-00.

Author's Address

William F. Maton Sotomayor National Research Council of Canada 1200 Montreal Road Ottawa, ON K1A 0R6 Canada Phone: +1 613 993 0880 EMail: wfms@ryouko.imsb.nrc.ca