ICANN proposes creating .INTERNAL domain
The plan is to keep the world at bay by never recording it in the DNS root – like many already do with a subdomain for an intranet
If we didn't have a bazillion TLDs these days we'd be ok and everyone can carry on using .local or .lan and be happy that they're not real TLDs. Now when anything could be a TLD because every word you've ever heard is a TLD, you don't know if its real or not.
Reserved TLDs are documented. The issue is they prioritized all the crazy ones before they added what people at home and businesses were actually using. ICANN won't sell .lan because it is used too much. They haven't tried so there is no official decision, but they won't - they did try .corp and .home and abandoned it.
.local is reserved in RFC 6762, but for multicast DNS.
People have been told for a very long time not to use fake TLDs. I don’t think it’s reasonable to accommodate people who can’t follow instructions.
Looks like *.lair is still a great one for a local TLD.
Just rock your "Evil.subterranean.lair" people.
You could also go for "Wicked.volcano.lair"
Or even "morallywrong.commercialrealestate.lair"
Also, anyone taking bets on how many "Internal" TLDs are gonna be used for porn?
Very few as this ruling would reserve .internal for local DNS only and forbid it at the global level. This is ICANN's solution to people picking random .lan .local .internal for internal uses. You'll be able to safely use .internal and it will never resolve to an address outside your network.
I say 80% of them.
A good move!
I’m surprised they didn’t codify “.lan” though since that one is so prevalent.
It's used in many cases where the machine may not be on the LAN and LAN is a technical term. "Internal" is not and to me signifies that it's "not public" aswell as probably managed by someone, well, internally at the entity you're with.
Certainly better than the awkward .home.arpa.
Huh, I've seen .local used for this quite a bit and only just now realised that it's meant for something else.
I've also seen .corp 🤮
And .home.
Hopefully this .Internal domain takes off and becomes generally recognized as the only correct non-routable domain we all use. Otherwise it's just the latest addition to the list of possible TLDs and confusion continues.
It's such a shitty situation. ICANN is not going to sell .home or .corp as they found a crapton of traffic when they checked for it, but IETF never finished an RFC for them - however people easily stumble into the draft RFC that lists what they were thinking of, and assume stuff like .lan is good to go too. They're safe by ICANN policy, but unsanctioned.
.home.arpa is safe, per RFC, but user unfriendly to normal people. There are a few others but none a corporation would realistically use. I've used . internal for lab testing stuff for ages, so this is extra good news for me I guess.
Really I wish they'd have just reserved the most common ones rather than getting caught in some bureaucratic black hole.
Too long to type, why it can't be .lan
Who is Ian?
I heard he threw parties all the time
Meanwhile, for my homelab I just use split DNS and a (properly registered+set up) .house domain - But that's because I have services that I want to have working with one name both inside and outside of my network
Here is an alternative Piped link(s):
what are you proposing for you're always proposing just go
Piped is a privacy-respecting open-source alternative frontend to YouTube.
I'm open-source; check me out at GitHub.
Don't follow. Help me out someone please.
The net runs on numbers. The numbers have to be translated into/from the DNS name to the numbers.
Nominating a DNS name as internal is doesn't change the fact that we still have to, at some stage, find the (local) network mask that that corresponds to.
What am I missing?
Update: I'm not sure I formed my question correctly because I'm none the wiser. That's my fault, I think.
It’s for internal resources. You can really use whatever subdomain you want internally, but this decision would be to basically say to registrars, this TLD is reserved, we will never sell this TLD to anyone to use. That way you know that if you use it internally, there’s no way a whoopsie would happen where your DNS server finds a public record for this TLD.
A DNS Proxy/Forwarder server? That's where you would configure how your .internal domain resolves to IPs on your internal network. Machines inside the network make their DNS queries to that server, which either serves them from cache, or from the local mappings, for forwards them off to a public/ISP server.
Acronyms, initialisms, abbreviations, contractions, and other phrases which expand to something larger, that I've seen in this thread:
| Fewer Letters | More Letters |
|---|---|
| CA | (SSL) Certificate Authority |
| DNS | Domain Name Service/System |
| IP | Internet Protocol |
| SSL | Secure Sockets Layer, for transparent encryption |
| VPN | Virtual Private Network |
5 acronyms in this thread; the most compressed thread commented on today has 7 acronyms.
[Thread #477 for this sub, first seen 2nd Feb 2024, 16:35] [FAQ] [Full list] [Contact] [Source code]
I use .home for my home network…
I just use *.loc.al as a local dns entry in my own server with local addresses using devicename.loc.al and loc.al itself going to my gateway/routerpage. 😅
I'm sure we'll keep using .intranet because why should we ever change?
