<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<p>It's okay though, because we freed up UDP/53 by moving DNS to
TCP/443, so then we can move HTTPS to UDP/53.<br>
</p>
<div class="moz-cite-prefix">On 2/21/20 6:37 PM, Owen DeLong wrote:<br>
</div>
<blockquote type="cite"
cite="mid:C382D4C4-2368-4BDB-9B13-DC7E68104FAF@delong.com">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
First we moved the entire internet to TCP/443.
<div class=""><br class="">
</div>
<div class="">Now we propose moving it all to UDP/53.</div>
<div class=""><br class="">
</div>
<div class="">
<div class="">
<div>What’s next? Why not simply eliminate port numbers
altogether in favor of a single 16-bit client-side unique
session identifier.</div>
<div><br class="">
</div>
<div>Owen</div>
<div><br class="">
<blockquote type="cite" class="">
<div class="">On Feb 21, 2020, at 15:20 , Matthew Petach
<<a href="mailto:mpetach@netflight.com" class=""
moz-do-not-send="true">mpetach@netflight.com</a>>
wrote:</div>
<br class="Apple-interchange-newline">
<div class="">
<div dir="auto" class="">
<div class=""><br class="">
<br class="">
<div class="gmail_quote">
<div dir="ltr" class="gmail_attr">On Fri, Feb 21,
2020, 13:31 Łukasz Bromirski <<a
href="mailto:lukasz@bromirski.net" class=""
moz-do-not-send="true">lukasz@bromirski.net</a>>
wrote:<br class="">
</div>
<blockquote class="gmail_quote" style="margin:0 0
0 .8ex;border-left:1px #ccc
solid;padding-left:1ex"><br class="">
</blockquote>
<blockquote class="gmail_quote" style="margin:0 0
0 .8ex;border-left:1px #ccc
solid;padding-left:1ex">[...]<br class="">
<br class="">
Now… once we are aware, the only question is —
where we go from here?<br class="">
<br class="">
— <br class="">
./<br class="">
</blockquote>
</div>
</div>
<div dir="auto" class=""><br class="">
</div>
<div dir="auto" class=""><br class="">
</div>
<div dir="auto" class="">Well, it's clear the UDP 443
experiment wasn't entirely successful.</div>
<div dir="auto" class=""><br class="">
</div>
<div dir="auto" class="">So clearly, it's time to use
the one UDP port that is allowed through at the top
of everyone's ACL rules, and update QUIC in the next
iteration to use UDP/53.</div>
<div dir="auto" class=""><br class="">
</div>
<div dir="auto" class="">*THAT* should solve the whole
problem, once and for all.</div>
<div dir="auto" class=""><br class="">
</div>
<div dir="auto" class="">;)</div>
<div dir="auto" class=""><br class="">
</div>
<div dir="auto" class="">Matt</div>
<div dir="auto" class=""><br class="">
</div>
</div>
</div>
</blockquote>
</div>
<br class="">
</div>
</div>
</blockquote>
</body>
</html>