On Oct 2, 2007, at 1:41 AM, Mark Andrews wrote:
Someone should talk to ucdavis.edu and get this idiocy pulled.
And NIST, and many many others..
Because there are lots of recursive and authoritative nameservers out there behind firewalls that get it right. I've seen many more complaints about UDP packets > 512 bytes being blocked than complaints about fallback to TCP failing. Most people actually do the right thing without thinking about it. The allow TCP out to anything this includes DNS servers. Most allow both UDP and TCP in to their nameservers. This is the silent majority.
Again, any pointers empirical data along these lines would be appreciated. -danny _______________________________________________ Ietf@xxxxxxxx https://www1.ietf.org/mailman/listinfo/ietf