DNS RFC Reference — dnspython 2.8.0 documentation (original) (raw)
The DNS is defined by a large number of RFCs, many of which have been extensively updated or obsoleted. This chapter aims to provide a roadmap and reference for this confusing space. The chapter does not aim to be encyclopedically complete, however, as the key information would then be lost in the noise. The curious are encouraged to click on the “Updated by” links on the IETF pages to see the finer points, or the “Obsoletes” links to go spelunking into the history of the DNS.
DNSSEC gets its own section instead of being included in the “Core” list because there are many DNSSEC related RFCs and it’s helpful to group them together. It’s not a statement that DNSSEC isn’t part of the “Core” of the DNS.
The IANA DNS Parameters registry is the official reference site for all DNS constants.
Core RFCs
Introduction to the DNS and description of basic behavior.
The core DNS wire protocol and master file format.
Incremental zone transfer (IXFR).
The NOTIFY protocol.
Clarifications to the specification.
Negative Caching.
Transaction Signatures (TSIG)
Dynamic Updates
Handling of Unknown DNS Resource Record (RR) Types
GSS-TSIG.
Zone transfers (AXFR).
EDNS (version 0)
The EDNS(0) Padding Option
Clarification on the meaning of NXDOMAIN.
Padding Policies for Extension Mechanisms for DNS (EDNS(0))
Extended DNS Errors
DNSSEC RFCs
Introduction and requirements.
Resource records.
Protocol.
Minimally covering NSEC records and On-line Signing.
Derivation of DNS Name Predecessor and Successor.
DNS Security (DNSSEC) Hashed Authenticated Denial of Existence. [NSEC3]
Use of SHA-2 Algorithms with RSA in DNSKEY and RRSIG Resource Records for DNSSEC.
Elliptic Curve Digital Signature Algorithm (DSA) for DNSSEC.
Operational Practices, Version 2.
Clarifications and Implementation Notes.
Key Rollover Timing Considerations.
Edwards-Curve Digital Security Algorithm (EdDSA) for DNSSEC.
Algorithm Implementation Requirements and Usage Guidance for DNSSEC.
Revised IANA Considerations for DNSSEC.
Misc RFCs
Reverse mapping name form for IPv4.
Serial number arithmetic.
Case-sensitivity clarification.
Client Subnet in DNS Queries
Domain Name System (DNS) Cookies
DNS Terminology.
Additional Transport RFCs
Specification for DNS over Transport Layer Security (TLS).
DNS Queries over HTTPS (DoH).
DNS over Dedicated QUIC Connections.
RFCs for RR types
There are many more RR types than are listed here; if a type is not listed it means it is obsolete, deprecated, or rare “in the wild”. Some types that are currently rare are listed because they may well be more heavily used in the not-to-distant future. See the IANA DNS Parameters registry for a complete list.
A
AAAA
CAA
CDNSKEY
CDS
CNAME
CSYNC
DNAME
DNSKEY
DS
HTTPS
LOC
MX
NAPTR
NS
NSEC
NSEC3
NSEC3PARAM
OPENPGPKEY
PTR
RRSIG
SMIMEA
SOA
SPF
SRV
SSHFP
SVCB
TLSA
TXT
ZONEMD