.SE releases report on consumer broadband routers
"Three of the ten routers that .SE has tested, have passed the test specification without any remarks. The other seven have had severe problems when using what might be considered plain Domain Name System (DNS). The majority of the routers does not manage to pass on DNSSEC to the client, which gives you problems when there are applications on the client that want to handle their own DNSSEC validation." http://iis.se/about/press?id=135 The Excel document describing the result of the tests in more detail is available on request. -- Patrik Wallström Project Manager, R&D .SE (Stiftelsen för Internetinfrastruktur) E-mail: pawal@iis.se Web: http://www.iis.se/
On Tue, Feb 26, 2008 at 11:06:31AM +0100, Patrik Wallstrom <pawal@blipp.com> wrote a message of 58 lines which said:
"Three of the ten routers that .SE has tested, have passed the test specification without any remarks. The other seven have had severe problems when using what might be considered plain Domain Name System (DNS).
If they mess with DNS data, they are not routers (a layer 3 device, neutral with respect to the content), they are middleboxes (a layer 1 to 9 device, able to break anything).
On 26 feb 2008, at 11.18, Stephane Bortzmeyer wrote:
If they mess with DNS data, they are not routers (a layer 3 device, neutral with respect to the content), they are middleboxes (a layer 1 to 9 device, able to break anything).
Well, it is more complicated than that. Many people do think that NAT boxes are layer 3 devices, and if you have a double-nat mechanism then "messing around with DNS packets" is a needed feature. Sure, then one start walking from layer 3 towards layer 9.... But... Anyway, this is not when we should fight about wording. We all know what we talk about, and I think we should thank Patrik and others what they have done. Patrik
On Tue, 26 Feb 2008, Stephane Bortzmeyer wrote:
If they mess with DNS data, they are not routers (a layer 3 device, neutral with respect to the content), they are middleboxes (a layer 1 to 9 device, able to break anything).
Please drop your OSI poster and put your hands behind your head! Paul
participants (4)
-
Patrik Fältström -
Patrik Wallstrom -
Paul Wouters -
Stephane Bortzmeyer