Search RFCs
RFC 8806
Running a Root Server Local to a Resolver,June 2020
- File formats:
- Also available:XML file for editing
- Status:
- INFORMATIONAL
- Obsoletes:
- RFC 7706
- Authors:
- W. Kumari
P. Hoffman - Stream:
- IETF
- Source:
- dnsop (ops)
Cite this RFC:TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC8806
Discuss this RFC: Send questions or comments to the mailing listdnsop@ietf.org
Other actions:View Errata | Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 8806
Abstract
Some DNS recursive resolvers have longer-than-desired round-triptimes to the closest DNS root server; those resolvers may havedifficulty getting responses from the root servers, such as during anetwork attack. Some DNS recursive resolver operators want to preventsnooping by third parties of requests sent to DNS root servers. Inboth cases, resolvers can greatly decrease the round-trip time andprevent observation of requests by serving a copy of the full rootzone on the same server, such as on a loopback address or in theresolver software. This document shows how to start and maintain sucha copy of the root zone that does not cause problems for other usersof the DNS, at the cost of adding some operational fragility for theoperator.
This document obsoletes RFC 7706.
For the definition ofStatus,seeRFC 2026.
For the definition ofStream, seeRFC 8729.