From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-oi1-x232.google.com (mail-oi1-x232.google.com [IPv6:2607:f8b0:4864:20::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by lists.bufferbloat.net (Postfix) with ESMTPS id EE7543B29E for ; Tue, 18 Apr 2023 03:46:33 -0400 (EDT) Received: by mail-oi1-x232.google.com with SMTP id 5614622812f47-38ba6bd5a79so244882b6e.2 for ; Tue, 18 Apr 2023 00:46:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1681803993; x=1684395993; h=to:subject:message-id:date:from:references:in-reply-to:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=KlUOE8Nw/6xJzo0p0B1oej0OVyi9FZqIwGB+XawwzH8=; b=YiY1k4lkljPLMenvKPfi5Mihq+4aZONg4S4BqmoWKFrTQsmdnhGg9VA0EPOhB2a29x VdQ4SZaoCADDjBlblwjQ9J6n0Ejne6nc8iGRA3l7doexA0kB0Awal8WbHlj8zlXpnGUq wXlobdEJWQNJoFWY2WlNpzgeN+EbYQ8PSPfsDtijYjfrqZ9oWOu9mh8zsJ01gQc50U5K LPXFMbPgS5IrklPHHqedw0lE8/kX5a1FDk+WDylpPpMghnaduV7I/bhMwNAtUnlQKOPE uEHP1Yt5cOCh+huBOx45E73kdTTNTf4psYyFO7GnDyyQrYeuoJqlO7hubo6XruEol21q AY8A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1681803993; x=1684395993; h=to:subject:message-id:date:from:references:in-reply-to:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=KlUOE8Nw/6xJzo0p0B1oej0OVyi9FZqIwGB+XawwzH8=; b=lC7v0JZjR3n77ebl+hRJKMFfX5lYNDsPOVehm7A4+E4RF0JZuwAEKJJxK0dA4y9Wng CNhOkeW/Bt5Dq41TCiID/i9FTgkY/JuULitPzcJS12xwhpjo7GkHyCNWRbuQeqS0dloK JV25WEoE0HxaglDmhry8l7aNREZSj0i9UnrtnnfIr1qgGjZPOtw9r0HZijX3kdTdCMhQ 8c/GXenJV2op3DPn6dC56LcX4zv+Jr8brXErLfhJ0dgPCi0J+Rr0PoU3koZOXzaIJdbm dMWki7357BVH2A6M5nUwsrRbxB2VUMb29cRjpIFjItqf8nwfKQU51jRxhf9T/c937drg 8HFA== X-Gm-Message-State: AAQBX9cHcn8oP3jH9x2xD5htqkz05ytpJXm9Z/2jmdo7woYpXKmyJO98 aB1xR0LSyGM5WOQDrwFvydeuFHHufMOHgEk3ZAasepbJrZw= X-Google-Smtp-Source: AKy350bjJkKkTG/8LEQHe8AwUsDaIVQFftOMvM0eaj2vS1lwk/XI5TlpXzACh/VyK3WkyJ5zAx7EU4z6sutiq7RNkks= X-Received: by 2002:aca:f103:0:b0:38e:2135:6985 with SMTP id p3-20020acaf103000000b0038e21356985mr355024oih.1.1681803993007; Tue, 18 Apr 2023 00:46:33 -0700 (PDT) MIME-Version: 1.0 Received: by 2002:a05:6358:10a:b0:118:4a30:b981 with HTTP; Tue, 18 Apr 2023 00:46:32 -0700 (PDT) In-Reply-To: References: <202304171438.33HEcqi7056122@gndrsh.dnsmgr.net> From: =?UTF-8?Q?David_Fern=C3=A1ndez?= Date: Tue, 18 Apr 2023 09:46:32 +0200 Message-ID: To: starlink Content-Type: text/plain; charset="UTF-8" Subject: Re: [Starlink] fiber IXPs in space X-BeenThere: starlink@lists.bufferbloat.net X-Mailman-Version: 2.1.20 Precedence: list List-Id: "Starlink has bufferbloat. Bad." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Apr 2023 07:46:34 -0000 PEPs have been mentioned as an example of so called stealth optimization. Another example, I think it is IGMP snooping: https://en.wikipedia.org/wiki/IGMP_snooping So, well, maybe this so called DNS stealth optimization is not so bad, if it really is easy to implement and it brings benefits (RTT by half), but pros and cons should be carefully evaluated. Regards, David 2023-04-17 21:00 GMT+02:00, David Lang : > On Mon, 17 Apr 2023, Rodney W. Grimes wrote: > >>> On Sun, 16 Apr 2023, David Fern?ndez via Starlink wrote: >>> >>>> The idea would be that the satellite inspects IP packets and when it >>>> detects a DNS query, instead of forwarding the packet to ground >>>> station, it just answers back to the sender of the query. >>> >>> This would be a bad way to implement it. You don't want to override >>> queries to >>> other DNS servers, but it would be very easy to create an anycast address >>> that >>> is served by the satellites. >> >> Yes, and the later is what I proposed, the idea of intercepting >> someone ELSE'S anycast address and processing it would be >> wrong in many ways, in effect a Man In the Middle attack >> as stated else where. > > I was assuming that it would be done in coordination with the existing user, > not > as a stealth optimization. I should have made that clear. > > David Lang >