ietf-mxcomp
[Top] [All Lists]

FYI - RFC3123

2004-05-26 15:46:18


I came across the experimental RFC 3123, which specifies special APL record
type that can be used which could be used to list set of ip address ranges.
We can possibly use it for less complex marid record types for EHLO checking.

For full info please read http://www.ietf.org/rfc/rfc3123.txt
And the following is quoted from that text:

 7. Applicability Statement

   The APL RR defines a framework without specifying any particular
   meaning for the list of prefixes.  It is expected that APL RRs will
   be used in different application scenarios which have to be
   documented separately.  Those scenarios may be distinguished by
   characteristic prefixes placed in front of the DNS owner name.

   An APL application specification MUST include information on

   o  the characteristic prefix, if any

   o  how to interpret APL RRSets consisting of more than one RR

   o  how to interpret an empty APL RR

   o  which address families are expected to appear in the APL RRs for
      that application

   o  how to deal with APL RR list elements which belong to other
      address families, including those not yet defined

   o  the exact semantics of list elements negated by the "!" character

   Possible applications include the publication of address ranges
   similar to [RFC1101], description of zones built following [RFC2317]
   and in-band access control to limit general access or zone transfer
   (AXFR) availability for zone data held in DNS servers.

   The specification of particular application scenarios is out of the
   scope of this document.

 8. Examples

   The following examples only illustrate some of the possible usages
   outlined in the previous section.  None of those applications are
   hereby specified nor is it implied that any particular APL RR based
   application does exist now or will exist in the future.

  ; RFC 1101-like announcement of address ranges for foo.example
  foo.example.             IN APL 1:192.168.32.0/21 !1:192.168.38.0/28

  ; CIDR blocks covered by classless delegation
  42.168.192.IN-ADDR.ARPA. IN APL ( 1:192.168.42.0/26 1:192.168.42.64/26
                                  1:192.168.42.128/25 )

  ; Zone transfer restriction
  _axfr.sbo.example.       IN APL 1:127.0.0.1/32 1:172.16.64.0/22

  ; List of address ranges for multicast
  multicast.example.       IN APL 1:224.0.0.0/4  2:FF00:0:0:0:0:0:0:0/8

   Note that since trailing zeroes are ignored in the first APL RR the
   AFDLENGTH of both <apitems> is three.


-- 
William Leibzon
Elan Networks
william(_at_)elan(_dot_)net


<Prev in Thread] Current Thread [Next in Thread>