operations icon indicating copy to clipboard operation
operations copied to clipboard
verified publisher icon openstreetmap

Add SVCB DNS record for tile.openstreetmap.org

Open bt90 opened this issue 2 years ago • 5 comments

This allows clients to directly establish a HTTP/2 or HTTP/3 connection while skipping the usual upgrade chain.

Cloudflare article: https://blog.cloudflare.com/speeding-up-https-and-http-3-negotiation-with-dns/

Firefox: https://bugzilla.mozilla.org/show_bug.cgi?id=1623126

Chrome: https://chromestatus.com/feature/5485544526053376

To check:

https://dns.google/query?name=tile.openstreetmap.org&rr_type=HTTPS

IETF draft:

https://datatracker.ietf.org/doc/draft-ietf-dnsop-svcb-https/

bt90 avatar Jun 20 '23 17:06 bt90

Why only for tile? Though adding it for everything will be a quite a pain...

tomhughes avatar Jun 20 '23 18:06 tomhughes

It also doesn't look like dnscontrol has support for it yet :-(

tomhughes avatar Jun 20 '23 18:06 tomhughes

Blocked by https://github.com/StackExchange/dnscontrol/issues/1660

bt90 avatar Jun 20 '23 18:06 bt90

Cloudflare do support SVCB, but yes blocked by dnscontrol support missing.

Firefishy avatar Jun 20 '23 18:06 Firefishy

Hmm. Maybe the other way round? You're using fastly with a CNAME. Their DNS could provide the record.

Edit: https://community.fastly.com/t/feature-request-svcb-dns-records/256

bt90 avatar Jun 20 '23 19:06 bt90

We point tile.openstreetmap.org to a CNAME dualstack.n.sni.global.fastly.net.. It will be up to fastly to add HTTPS/SVCB records to the their fastly.net domain. CNAME records point ALL record types to the destination domain.

I have just added HTTPS/SVCB to some openstreetmap.org domains.

Firefishy avatar Jun 20 '24 13:06 Firefishy