Individual Submission W. Sotomayor Internet-Draft NRC-CNRC Intended status: BCP July 27, 2011 Expires: January 28, 2012 Additional IPv4 Delegations for AS112 draft-sotomayor-as112-ipv4-cull-01 Abstract This is a direction to IANA concerning the delegation of certain additional IPv4 zones to the AS112 project. Status of this Memo This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79. Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet- Drafts is at http://datatracker.ietf.org/drafts/current/. Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress." This Internet-Draft will expire on January 28, 2012. Copyright Notice Copyright (c) 2011 IETF Trust and the persons identified as the document authors. All rights reserved. This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (http://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Simplified BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Simplified BSD License. Sotomayor Expires January 28, 2012 [Page 1] Internet-Draft Additional IPv4 Delegations for AS112 July 2011 Table of Contents 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3 2. Reverse DNS Delegation, Local-Use and Test Addresses . . . . . 3 3. IANA Considerations . . . . . . . . . . . . . . . . . . . . . . 3 4. Security Considerations . . . . . . . . . . . . . . . . . . . . 4 5. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 4 6. References . . . . . . . . . . . . . . . . . . . . . . . . . . 4 6.1. Normative References . . . . . . . . . . . . . . . . . . . 4 6.2. Informative References . . . . . . . . . . . . . . . . . . 5 Appendix A. Change History . . . . . . . . . . . . . . . . . . . . 5 Author's Address . . . . . . . . . . . . . . . . . . . . . . . . . 6 Sotomayor Expires January 28, 2012 [Page 2] Internet-Draft Additional IPv4 Delegations for AS112 July 2011 1. Introduction This is a direction to IANA concerning the delegation of certain additional IPv4 zones to the AS112 Project [RFC6304] which operates in an anycast cloud [RFC4786]. 2. Reverse DNS Delegation, Local-Use and Test Addresses Work documenting special use addresses [RFC5735] have appeared containing good candidates for inclusion with the existing delegations to the AS112 Project. These local and special use addresses have now been captured and identified for Domain Name System (DNS [RFC1034] and [RFC1035]) zone administrators to curtail leaking queries in [RFC6303]. Additionally, [RFC5737] identifies a short listing of IPv4 address blocks for use in documentation. These too should be considered for delegation to the AS112 Project. Thus the purpose of this memo is to effectively signal to the AS112 Project [RFC6304] that it should reflect the efforts of [RFC6303] and follow directives and delegations subsequently issued as described in section 6. It is interesting to note that while the focus has largely been on the use of [RFC1918] addresses, some addresses (such as those first enumerated within [RFC1912]) have as of late also been the subject of [RFC6303] . 3. IANA Considerations As per the provisions of [RFC3596], this document recommends the IAB to direct IANA to delegate the following IN-ADDR.ARPA reverse DNS zones to the AS112 project [RFC6304]: 0.in-addr.arpa (IPv4 "This" Network) 127.in-addr.arpa (IPv4 Loop-Back Network) 2.0.192.in-addr.arpa (IPv4 Test Net 1) 100.51.198.in-addr.arpa (IPv4 Test Net 2) 113.0.203.in-addr.arpa (IPv4 Test Net 3) 255.255.255.255.in-addr.arpa (IPv4 Broadcast) AS112 project servers should add these zones to their configuration, and terminate queries efficiently inside their service infrastructure. Sotomayor Expires January 28, 2012 [Page 3] Internet-Draft Additional IPv4 Delegations for AS112 July 2011 This delegation instruction is subject to further direction in the future from the IAB to IANA, as per the provisions of [RFC3596]. 4. Security Considerations The Security Considerations described in [RFC6304] also apply to local-use IPv4 addresses, and should be considered in the context of the use of these addresses. Security administrators as well as general support personnel who are involved in the operations of networked devices may also find the information found in the companion document [RFC6305] quite helpful. DNS queries may well identify the location of deployment of IPv4 enabled equipment in private contexts, particularly when the reverse queries relate to local-use IPv4 addresses. While operators of the DNS reverse servers should respect the privacy of data relating to individual queries made to these reverse address servers, the unintentional leakage of information beyond its intended scope of use and circulation represents a potential threat to the security of a local private network. This direction to delegate these local-use IPv4 reverse address sub-domains does not substantially change the security risks of information leakage from private environments. 5. Acknowledgements The author would like to acknowledge the efforts of Mark P. Andrews for preparing the work related to serving certain DNS zones locally and George Michaelson and Geoff Huston for their work [I-D.michaelson-as112-ipv6] in setting the example for a template to be used by the AS112 Project as a direction for the IANA. The author would also like to thank Joe Abley, Marco d'Itri, Nick Hilliard and Paul Vixie for their feedback. 6. References 6.1. Normative References [RFC1034] Mockapetris, P., "Domain names - concepts and facilities", STD 13, RFC 1034, November 1987. Sotomayor Expires January 28, 2012 [Page 4] Internet-Draft Additional IPv4 Delegations for AS112 July 2011 6.2. Informative References [I-D.michaelson-as112-ipv6] Michaelson, G. and G. Huston, "AS112 Nameserver Delegations for IPv6", draft-michaelson-as112-ipv6-00 (work in progress), March 2011. [RFC1035] Mockapetris, P., "Domain names - implementation and specification", STD 13, RFC 1035, November 1987. [RFC1912] Barr, D., "Common DNS Operational and Configuration Errors", RFC 1912, February 1996. [RFC1918] Rekhter, Y., Moskowitz, R., Karrenberg, D., Groot, G., and E. Lear, "Address Allocation for Private Internets", BCP 5, RFC 1918, February 1996. [RFC3596] Thomson, S., Huitema, C., Ksinant, V., and M. Souissi, "DNS Extensions to Support IP Version 6", RFC 3596, October 2003. [RFC4786] Abley, J. and K. Lindqvist, "Operation of Anycast Services", BCP 126, RFC 4786, December 2006. [RFC5735] Cotton, M. and L. Vegoda, "Special Use IPv4 Addresses", BCP 153, RFC 5735, January 2010. [RFC5737] Arkko, J., Cotton, M., and L. Vegoda, "IPv4 Address Blocks Reserved for Documentation", RFC 5737, January 2010. [RFC6303] Andrews, M., "Locally Served DNS Zones", BCP 163, RFC 6303, July 2011. [RFC6304] Abley, J. and W. Maton, "AS112 Nameserver Operations", RFC 6304, July 2011. [RFC6305] Abley, J. and W. Maton, "I'm Being Attacked by PRISONER.IANA.ORG!", RFC 6305, July 2011. Appendix A. Change History This section to be removed prior to publication. Sotomayor Expires January 28, 2012 [Page 5] Internet-Draft Additional IPv4 Delegations for AS112 July 2011 01 Subsequent draft split into 2, this one circulated as draft-sotomayor-as112-ipv4-cull-01 as an IANA-only instruction and draft-sotomayor-as112-maint-00 as further AS112 considerations and maintenance. 00 Initial draft, circulated as draft-sotomayor-as112-ipv4-cull-00. Author's Address William F. Maton Sotomayor National Research Council of Canada 1200 Montreal Road Ottawa, ON K1A 0R6 Canada Phone: +1 613 993 0880 Email: wfms@ryouko.imsb.nrc.ca Sotomayor Expires January 28, 2012 [Page 6]