<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content="text/html; charset=utf-8" http-equiv=Content-Type>
<STYLE>
BLOCKQUOTE {
MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; MARGIN-LEFT: 2em
}
OL {
MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px
}
UL {
MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px
}
DIV.FoxDiv20130325065650781006 {
COLOR: #000000
}
P {
MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px
}
DIV.FoxDiv20130326105736453122 {
LINE-HEIGHT: 1.5; MARGIN: 10px; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt
}
BODY {
LINE-HEIGHT: 1.5; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt
}
</STYLE>
<META name=GENERATOR content="MSHTML 8.00.6001.19403">
<STYLE>BLOCKQUOTE {
MARGIN-TOP: 0px
}
OL {
MARGIN-TOP: 0px
}
UL {
MARGIN-TOP: 0px
}
</STYLE>
</HEAD>
<BODY style="MARGIN: 10px">
<DIV>
<DIV class=FoxDiv20130326105736453122>
<STYLE>BLOCKQUOTE {
MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; MARGIN-LEFT: 2em
}
OL {
MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px
}
UL {
MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px
}
DIV.FoxDiv20130325065650781006 {
COLOR: #000000
}
P {
MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px
}
</STYLE>
<META name=GENERATOR content="MSHTML 8.00.6001.19403">
<DIV>Dear,</DIV>
<DIV style="TEXT-INDENT: 2em"> </DIV>
<DIV>dig some domain to some resolvers and name servers before find that they do
not advertise right reply size limit, even though in fact they support of
sufficient size.</DIV>
<DIV>when the resolver 114.114.114.114 is queried, it return the result as the
following. </DIV>
<DIV
style="FONT-STYLE: italic; TEXT-INDENT: 2em; FONT-WEIGHT: bold">[root@localhost ~]# dig @114.114.114.114 com any +dnssec +bufsize=4096 </DIV>
<BLOCKQUOTE style="MARGIN-RIGHT: 0px" dir=ltr>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">; <<>> DiG 9.3.6-P1-RedHat-9.3.6-16.P1.el5 <<>> @114.114.114.114 com any +dnssec +bufsize=4096</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">; (1 server found)</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; global options: printcmd</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; Got answer:</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10405</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0</DIV>
<DIV style="FONT-STYLE: italic; FONT-WEIGHT: bold"> </DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; QUESTION SECTION:</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;com. IN ANY</DIV>
<DIV style="FONT-STYLE: italic; FONT-WEIGHT: bold"> </DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; ANSWER SECTION:</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">com. 84506 IN RRSIG DNSKEY 8 1 86400 20130329182533 20130322182033 30909 com. bkJL6r7iv1PLxVSGbJczd2uMvndJA8lFVDPL+hIo08YjRlhD10qnewEW uIrCABkPy6xS79hHu3oXMoNjucZ8BdKxgrZf7ZnQ4Iv7IwzSPI62qaWQ t7sngLctJqPvxBccRYwfz+R0lv/gELnwvK2XX+xxIgDACMorkdEnzPQh utZS/PrhqVpqicyxMIqCssSu2Vphj7Xe7Y+EkNzjUIBXaXbMfHDFPpsv 0a2Pkec5BWj8NtKDN9LlCx0KXvwTsl12H9yyWM6AFo1Px968R1wFeYZA uqozJYhojx8SQ4mUpnYLby+ABiJIK+Q4XyvL1JhQEATqwYs+co/wBAkz mVgJAQ==</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">com. 84506 IN DNSKEY 256 3 8 AQPcnY9mVa8t+3ab9SsbKjGh38DXxdCZsL0sCdUEzyj1b3nN9BFLolfM o7PyfRhOw29YvgwHq1wRB2nRWcOpuUZhgZNOxWqLoOu84KR7HtQmY1yZ uSkh9WA6mUDQT+i/7zpUVbtmZqNJm5SuQZFE0hn+N5CMxnXOLOsHJsn6 WvB1sQ==</DIV>
<DIV style="FONT-STYLE: italic; FONT-WEIGHT: bold"> </DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; Query time: 31 msec</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; SERVER: 114.114.114.114#53(114.114.114.114)</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; WHEN: Sun Mar 24 16:08:01 2013</DIV>
<DIV
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; MSG SIZE rcvd: 458</DIV>
<DIV style="FONT-STYLE: italic; FONT-WEIGHT: bold"> </DIV></BLOCKQUOTE>
<DIV style="FONT-STYLE: italic; FONT-WEIGHT: bold" dir=ltr><SPAN
style="FONT-STYLE: normal; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: normal">The
bufsize option is set in order to tell the resolver open edns0, but it ignore
it. By using <SPAN
style="FONT-STYLE: normal; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: normal">OARC's
DNS Reply Size Test Server(<A
href="https://www.dns-oarc.net/oarc/services/replysizetest">https://www.dns-oarc.net/oarc/services/replysizetest</A>),</SPAN></SPAN></DIV>
<DIV style="FONT-STYLE: italic; FONT-WEIGHT: bold" dir=ltr><SPAN
style="FONT-STYLE: normal; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: normal"><SPAN
style="FONT-STYLE: normal; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: normal"> it
is found that the resolver is actually support ends0. Maybe while it
support edns0, it does not tell this to clients?</SPAN></DIV>
<BLOCKQUOTE style="FONT-STYLE: italic; FONT-WEIGHT: bold; MARGIN-RIGHT: 0px"
dir=ltr>
<H2
style="WIDOWS: 2; TEXT-TRANSFORM: none; TEXT-INDENT: 0px; FONT: 10.5pt 微软雅黑; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: #000080; WORD-SPACING: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px"
class=content-title><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold">[root@localhost
~]# dig +short rs.dns-oarc.net txt
@114.114.114.114<BR>rst.x3827.rs.dns-oarc.net.<BR>rst.x3837.x3827.rs.dns-oarc.net.<BR>rst.x3843.x3837.x3827.rs.dns-oarc.net.<BR>"Tested
at 2013-03-24 22:59:55 UTC"<BR>"58.217.249.137 sent EDNS buffer size
4096"<BR>"58.217.249.137 DNS reply size limit is at least
3843"<BR></SPAN><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold"></SPAN></H2>
<H2
style="WIDOWS: 2; TEXT-TRANSFORM: none; TEXT-INDENT: 0px; FONT: 10.5pt 微软雅黑; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: #000080; WORD-SPACING: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px"
class=content-title><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold"><SPAN
style="FONT-STYLE: normal; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: normal">Not
as the resolver, root give a size that is not
the right size it support. The edns0 size in the result is 512B
while the message size is 727B. That is to say, 512 is not
right? </SPAN></SPAN></H2>
<BLOCKQUOTE style="MARGIN-RIGHT: 0px" dir=ltr>
<H2
style="WIDOWS: 2; TEXT-TRANSFORM: none; TEXT-INDENT: 0px; FONT: 10.5pt 微软雅黑; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: #000080; WORD-SPACING: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px"
class=content-title><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold"><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold">[root@localhost
~]# dig @a.root-servers.net com any +dnssec +bufsize=4096
</SPAN></SPAN></H2>
<H2
style="WIDOWS: 2; TEXT-TRANSFORM: none; TEXT-INDENT: 0px; FONT: 10.5pt 微软雅黑; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: #000080; WORD-SPACING: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px"
class=content-title><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold"><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold">;
<<>> DiG 9.3.6-P1-RedHat-9.3.6-16.P1.el5 <<>>
@a.root-servers.net com any +dnssec +bufsize=4096<BR>; (2 servers
found)<BR>;; global options: printcmd<BR>;; Got answer:<BR>;;
->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65447<BR>;;
flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 15, ADDITIONAL:
16</SPAN></SPAN></H2>
<H2
style="WIDOWS: 2; TEXT-TRANSFORM: none; TEXT-INDENT: 0px; FONT: 10.5pt 微软雅黑; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: #000080; WORD-SPACING: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px"
class=content-title><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold"><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold">;;
OPT PSEUDOSECTION:<BR>; EDNS: version: 0, flags: do; udp: <SPAN
style="COLOR: #ff0000">512<BR></SPAN>;; QUESTION
SECTION:<BR>;com.
IN ANY</SPAN></SPAN></H2>
<H2
style="WIDOWS: 2; TEXT-TRANSFORM: none; TEXT-INDENT: 0px; FONT: 10.5pt 微软雅黑; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: #000080; WORD-SPACING: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px"
class=content-title><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold"><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold">;;
AUTHORITY
SECTION:<BR>com.
172800 IN
NS
a.gtld-servers.net.<BR>com.
172800 IN
NS
b.gtld-servers.net.<BR>com.
172800 IN
NS
c.gtld-servers.net.<BR>.................</SPAN></SPAN></H2>
<H2
style="WIDOWS: 2; TEXT-TRANSFORM: none; TEXT-INDENT: 0px; FONT: 10.5pt 微软雅黑; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: #000080; WORD-SPACING: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px"
class=content-title><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold"><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold">com.
86400 IN
DS 30909 8 2
E2D3C916F6DEEAC73294E8268FB5885044A833FC5459588F4A9184CF
C41A5766<BR>com.
86400 IN RRSIG DS 8 1
86400 20130331000000 20130323230000 40323 .
N2LWYkOwbv/oecFw3cuE1K7wphnmWzMVVSvRYbgFYUlUxhbCbh1KogVt
a7uUieHPwXyf6QT56+Au3XfHrwTZzXiy1nHx2tdmAiH/IuAEbyOBPECf
5dEeuKWpz6StQbn3OOxBaMauFShANT5gMsrqSvRDURvuOa8cdT7EaMhU
ikQ=</SPAN></SPAN></H2>
<H2
style="WIDOWS: 2; TEXT-TRANSFORM: none; TEXT-INDENT: 0px; FONT: 10.5pt 微软雅黑; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: #000080; WORD-SPACING: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px"
class=content-title><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold"><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold">;;
ADDITIONAL SECTION:<BR>a.gtld-servers.net.
86400 IN AAAA
2001:503:a83e::2:30<BR>a.gtld-servers.net.
86400 IN
A
192.5.6.30<BR>b.gtld-servers.net. 86400
IN AAAA
2001:503:231d::2:30<BR></SPAN></SPAN><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold"><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold">...............</SPAN></SPAN></H2>
<H2
style="WIDOWS: 2; TEXT-TRANSFORM: none; TEXT-INDENT: 0px; FONT: 10.5pt 微软雅黑; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; COLOR: #000080; WORD-SPACING: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px"
class=content-title><SPAN
style="FONT-STYLE: italic; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: bold"><SPAN
style="FONT-STYLE: normal; FONT-FAMILY: 微软雅黑; COLOR: #000080; FONT-SIZE: 10.5pt; FONT-WEIGHT: normal"><SPAN
style="FONT-STYLE: italic; FONT-WEIGHT: bold">;; Query time: 43 msec<BR>;;
SERVER: 198.41.0.4#53(198.41.0.4)<BR>;; WHEN: Sun Mar 24 16:20:17 2013<BR>;;
MSG SIZE rcvd: <SPAN
style="COLOR: #ff0000">727</SPAN><BR></SPAN></H2></BLOCKQUOTE></SPAN></BLOCKQUOTE>
<DIV style="FONT-STYLE: italic; FONT-WEIGHT: bold; MARGIN-RIGHT: 0px"
dir=ltr></SPAN></SPAN> </DIV></DIV></DIV></BODY></HTML>