.mil domain

Mike Damm MikeD at irwinresearch.com
Fri May 30 20:28:01 UTC 2003


Counter: leave everything as it is. If they are willing to provide the
hardware, bandwidth, and administrative costs to run root servers, they can
block whoever they want. Just like if you run a web server you can block
anyone from accessing it that you want. If you don't like it, start up your
own root zone, there isn't anything stopping you.

Not that it matters much in the big scheme of things; most modern resolvers
will give preference to root servers they can actually reach.

I for one am pretty happy with where E, G, and H are. Cogent and VeriSign's
networks can hardly handle power cycles, let alone nuclear wars. 

---
Michael Damm, MIS Department, Irwin Research & Development
V: 509.457.5080 x298 F: 509.577.0301 E: miked at irwinresearch.com


-----Original Message-----
From: Mark Borchers [mailto:mborchers at igillc.com] 
Sent: Friday, May 30, 2003 12:09 PM
To: nanog at merit.edu
Cc: stephen at sprunk.org; listuser at numbnuts.net; Mike Tancsa
Subject: RE: .mil domain


Suggestion:  migrate the current MIL root servers to the DREN
network.  Thus they would be easily accessible from DoD's
networks, while residining in front of any MIL filters or
blackhole routers relative to the rest of the Internet.


> On Fri, 30 May 2003, Mike Tancsa wrote:
>
> >
> > At 01:15 PM 30/05/2003 -0500, Stephen Sprunk wrote:
> >
> > >For the same reason anyone else accepts their routes --
> because they want to
> > >be able to reach them.  If they don't want to reach _you_, that's their
> > >choice.
> >
> > As Sean Donelan pointed out, the fact that 2 of the root name
> servers are
> > inside their network, there is more to the issue than you
> suggest.... I for
> > example want people in Australia to be able to reliably lookup
> DNS info on
> > my domains.  The .mil people have decided to hamper this process.
>
> I agree.  The root servers should have no filtering in place to block any
> demographics (unless of course a given node is DoSing them).
>
> The last time I tried to contact a .mil to report an open relay that was
> being abused, I was accused of being a spammer that had "hacked" their
> server.  Since that time I reject .mil mail.
>
> Justin
>



More information about the NANOG mailing list