[Pdns-users] Will DoT disappear in favor of DoQ for recursor to auth?
Otto Moerbeek
otto at drijf.net
Sun Sep 18 13:42:39 UTC 2022
No plans.
Currently, Recursor does not support outgoing DoQ. If/when we start
supporting outgoing DoQ it would not *imply* dropping outgoing DoT.
BTW, lookingt at https://talk.desec.io/t/dot-support-status/502:
when I grep for desec I see this:
45.54.76.1 desec.io. 6 Good 2022-09-21T15:35:38
157.53.224.1 desec.io. 5 Good 2022-09-21T15:37:32
2607:f740:e00a:deec::2 desec.io. 6 Bad 2022-09-19T15:35:35
2607:f740:e633:deec::2 desec.io. 5 Bad 2022-09-19T15:35:42
So it seems DoT is only supported on v4. Also not that the domain
listed for an IP is the first name the lead to a DoT probe. Other
names might be served by the same IP.
-Otto
On Sun, Sep 18, 2022 at 12:21:11PM +0200, Christoph via Pdns-users wrote:
> Hi,
>
> does the PowerDNS team have any specific plans to
> remove DoT support for recursor to authoritative queries
> in favor of DoQ in PowerDNS Recursor?
>
> thanks,
> Christoph
>
> related links:
> https://blog.powerdns.com/2022/06/13/probing-dot-support-of-authoritative-servers-just-try-it/
> https://datatracker.ietf.org/doc/draft-ietf-dprive-unilateral-probing/
> https://github.com/PowerDNS/pdns/issues/9897
> https://talk.desec.io/t/dot-support-status/502
> https://github.com/desec-io/desec-ns/pull/49
> _______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> https://mailman.powerdns.com/mailman/listinfo/pdns-users
More information about the Pdns-users
mailing list