ICANN Wants to Create .Internal Top-level Domain for Private Use

TheLostSwede · Jan 31, 2024

The nonprofit organisation that is in charge of coordinating and managing the namespaces and numerical spaces on the internet—ICANN or Internet Corporation for Assigned Names and Number—has proposed a rather big change on how consumers and businesses could be accessing networked devices on their private networks in the future. ICANN has put forward a new top-level domain for private use, much like the 192.168.x.x IP address range is allocated to private networks (alongside two other ranges), we might end up with a similar top-level domain. The proposed domain will be .internal, although we already have .localhost and .local today, but neither is really usable in a private network.

As such .internal has been suggested—in favour of.private due to concerns about it sounding like something privacy related—as a means for less computer savvy users to connect to devices on a private network. We've already seen solutions from several router manufacturers that use various domain names or subdomains to enable easier connectivity to routers. However, the goal here is to avoid clashes with top-level domains on the internet and.internal is said to resolve this problem. That said, it's not clear how this will be implemented as yet, but the ICANN is set to release more details in the near future. Even though it might not be the perfect solution, it should hopefully allow people to remember what they called their devices when they need to access them, rather than trying to remember the correct IP address.

View at TechPowerUp Main Site | Source

lexluthermiester · Jan 31, 2024

TheLostSwede said:
As such .internal has been suggested—in favour of.private due to concerns about it sounding like something privacy related

Internal networks are always private. Can't see the problem..

bonehead123 · Jan 31, 2024

lexluthermiester said:
Internal networks are always private. Can't see the problem.

Ah yes, the ole "solution looking for a problem" thingy

oh my....what have they done now..... :roll:

..

..

Solaris17 · Feb 1, 2024

lexluthermiester said:
Internal networks are always private. Can't see the problem..

It’s about DNS it’s a real issue. If .private is popular and being petitioned as a legit TLD then having it as your internal TLD will make your requests search your internal DNS system or worse (and in most cases) you will search outside your network and never get the resources you are trying to reach internally.

split horizon DNS is a bad and frowned upon practice so we try to minimize it as much as possible.

.local and .localhost have there own issues because they mean different things to different OSs and can be handled differently depending on platform.

to get around this most places use there TLD and rely on AD or heavily modified DNS servers to redirect users internal user requests to systems. This becomes a problem when you need to make modifications internally to DNS or want to test addresses from “the outside”.

this is a good thing for IT because it will alleviate internal DNS complexity and it will get around the .local and .localhost oddities introduced by various OSs.

without DNS then internal resources are relegated to ip address’ .

Eskimonster · Feb 1, 2024

If i can host my plex server kek

JAB Creations · Feb 1, 2024

All I care about here is if I don't have to keep screwing with Chrome every time I need to make a new version install (I test all versions of all modern browsers) without having to set chrome://flags/#allow-insecure-localhost. I know the localhost TLS certificate is self-signed! I'm quite sick of it and if this fixes it than great! Not using .private TLD is a good move too as there are plenty of legitimate public-access websites oriented around security.

kondamin · Feb 1, 2024

Looks to much like a regular tld

lexluthermiester · Feb 1, 2024

Solaris17 said:
It’s about DNS it’s a real issue.

Fair enough. That is not my area of expertise. I'll defer to the experts.

Solaris17 · Feb 1, 2024

lexluthermiester said:
Fair enough. That is not my area of expertise. I'll defer to the experts.

I mean just fyi you’re also not wrong. To anyone outside of homelabs or corp this means nothing. I would expect it to eventually make it (read years) as the default TLD on consumer routers instead of like .local but there is 0 home user impact for sure.

remixedcat · Feb 2, 2024

Solaris17 said:
It’s about DNS it’s a real issue. If .private is popular and being petitioned as a legit TLD then having it as your internal TLD will make your requests search your internal DNS system or worse (and in most cases) you will search outside your network and never get the resources you are trying to reach internally.

split horizon DNS is a bad and frowned upon practice so we try to minimize it as much as possible.

.local and .localhost have there own issues because they mean different things to different OSs and can be handled differently depending on platform.

to get around this most places use there TLD and rely on AD or heavily modified DNS servers to redirect users internal user requests to systems. This becomes a problem when you need to make modifications internally to DNS or want to test addresses from “the outside”.

this is a good thing for IT because it will alleviate internal DNS complexity and it will get around the .local and .localhost oddities introduced by various OSs.

without DNS then internal resources are relegated to ip address’ .

A brand of wireless routers I've tested before would have some wierd hostname stuff like this and it would cause stuff like vmware to have wierd dns hostnames that were hard to fix I'll dig up the screenshots of how it made vmware esxi/vsphere when I find em... would also be creating another hop in traceroutes for some reason too.

I wonder if this .internal would create that as well..

DaemonForce · Feb 2, 2024

It's another vague issue that doesn't appear to be a problem until everything starts imploding because some clown wanted to make .ZIP or .MP3 domains a reality.

We have enough problems just getting extremely aggressive bots to stfu now we are encouraging a new era phishing nightmare? Yeah no, bottle it.

remixedcat · Feb 2, 2024

DaemonForce said:
It's another vague issue that doesn't appear to be a problem until everything starts imploding because some clown wanted to make .ZIP or .MP3 domains a reality.

We have enough problems just getting extremely aggressive bots to stfu now we are encouraging a new era phishing nightmare? Yeah no, bottle it.

yep the whole .zip domain suffix was a bad

System Name	Overlord Mk MLI
Processor	AMD Ryzen 7 7800X3D
Motherboard	Gigabyte X670E Aorus Master
Cooling	Noctua NH-D15 SE with offsets
Memory	32GB Team T-Create Expert DDR5 6000 MHz @ CL30-34-34-68
Video Card(s)	Gainward GeForce RTX 4080 Phantom GS
Storage	1TB Solidigm P44 Pro, 2 TB Corsair MP600 Pro, 2TB Kingston KC3000
Display(s)	Acer XV272K LVbmiipruzx 4K@160Hz
Case	Fractal Design Torrent Compact
Audio Device(s)	Corsair Virtuoso SE
Power Supply	be quiet! Pure Power 12 M 850 W
Mouse	Logitech G502 Lightspeed
Keyboard	Corsair K70 Max
Software	Windows 10 Pro
Benchmark Scores	https://valid.x86.fr/yfsd9w

System Name	The Little One
Processor	i5-11320H @4.4GHZ
Motherboard	AZW SEI
Cooling	Fan w/heat pipes + side & rear vents
Memory	64GB Crucial DDR4-3200 (2x 32GB)
Video Card(s)	Iris XE
Storage	WD Black SN850X 4TB m.2, Seagate 2TB SSD + SN850 4TB x2 in an external enclosure
Display(s)	2x Samsung 43" & 2x 32"
Case	Practically identical to a mac mini, just purrtier in slate blue, & with 3x usb ports on the front !
Audio Device(s)	Yamaha ATS-1060 Bluetooth Soundbar & Subwoofer
Power Supply	65w brick
Mouse	Logitech MX Master 2
Keyboard	Logitech G613 mechanical wireless
Software	Windows 10 pro 64 bit, with all the unnecessary background shitzu turned OFF !
Benchmark Scores	PDQ

System Name	Rocinante
Processor	I9 14900KS
Motherboard	MSI MPG Z790I Edge WiFi Gaming
Cooling	be quiet! Pure Loop 240mm
Memory	64GB Gskill Trident Z5 DDR5 6000 @6400
Video Card(s)	MSI SUPRIM Liquid X 4090
Storage	1x 500GB 980 Pro \| 1x 1TB 980 Pro \| 1x 8TB Corsair MP400
Display(s)	Odyssey OLED G9 (G95SC)
Case	LANCOOL 205M MESH Snow
Audio Device(s)	Moondrop S8's on Schiit Hel 2e
Power Supply	ASUS ROG Loki SFX-L 1000W
Mouse	Lamzu Atlantis mini (White)
Keyboard	Monsgeek M3 Lavender, Akko Crystal Blues
VR HMD	Quest 3
Software	Windows 11
Benchmark Scores	I dont have time for that.

System Name	Iglo
Processor	5800X3D
Motherboard	TUF GAMING B550-PLUS WIFI II
Cooling	Arctic Liquid Freezer II 360
Memory	32 gigs - 3600hz
Video Card(s)	EVGA GeForce GTX 1080 SC2 GAMING
Storage	NvmE x2 + SSD + spinning rust
Display(s)	BenQ XL2420Z - lenovo both 27" and 1080p 144/60
Case	Fractal Design Meshify C TG Black
Audio Device(s)	Logitech Z-2300 2.1 200w Speaker /w 8 inch subwoofer
Power Supply	Seasonic Prime Ultra Platinum 550w
Mouse	Logitech G900
Keyboard	Corsair k100 Air Wireless RGB Cherry MX
Software	win 10
Benchmark Scores	Super-PI 1M T: 7,993 s :CinebR20: 5755 point GeekB: 2097 S-11398-M 3D :TS 7674/12260

Processor	AMD Ryzen 3800X / AMD 8350
Motherboard	ASRock X570 Phantom Gaming X / Gigabyte 990FXA-UD5 Revision 3.0
Cooling	Stock / Corsair H100
Memory	32GB / 24GB
Video Card(s)	Sapphire RX 6800 / AMD Radeon 290X (Toggling until 6950XT)
Storage	C:\ 1TB SSD, D:\ RAID-1 1TB SSD, 2x4TB-RAID-1
Display(s)	Samsung U32E850R
Case	be quiet! Dark Base Pro 900 Black rev. 2 / Fractal Design
Audio Device(s)	Creative Sound Blaster X-Fi
Power Supply	EVGA Supernova 1300G2 / EVGA Supernova 850G+
Mouse	Logitech M-U0007
Keyboard	Logitech G110 / Logitech G110

ICANN Wants to Create .Internal Top-level Domain for Private Use

TheLostSwede

News Editor

lexluthermiester

bonehead123

Solaris17

Super Dainty Moderator

Eskimonster

JAB Creations

kondamin

lexluthermiester

Solaris17

Super Dainty Moderator

remixedcat

DaemonForce

remixedcat

System Name	RemixedBeast-NX
Processor	Intel Xeon E5-2690 @ 2.9Ghz (8C/16T)
Motherboard	Dell Inc. 08HPGT (CPU 1)
Cooling	Dell Standard
Memory	24GB ECC
Video Card(s)	Gigabyte Nvidia RTX2060 6GB
Storage	2TB Samsung 860 EVO SSD//2TB WD Black HDD
Display(s)	Samsung SyncMaster P2350 23in @ 1920x1080 + Dell E2013H 20 in @1600x900
Case	Dell Precision T3600 Chassis
Audio Device(s)	Beyerdynamic DT770 Pro 80 // Fiio E7 Amp/DAC
Power Supply	630w Dell T3600 PSU
Mouse	Logitech G700s/G502
Keyboard	Logitech K740
Software	Linux Mint 20
Benchmark Scores	Network: APs: Cisco Meraki MR32, Ubiquiti Unifi AP-AC-LR and Lite Router/Sw:Meraki MX64 MS220-8P

System Name	DevKit
Processor	AMD Ryzen 5 3600 ↗4.0GHz
Motherboard	Asus TUF Gaming X570-Plus WiFi
Cooling	Koolance CPU-300-H06, Koolance GPU-180-L06, SC800 Pump
Memory	4x16GB Ballistix 3200MT/s ↗3600
Video Card(s)	PowerColor RX 580 Red Devil 8GB ↗1380MHz ↘1105mV, PowerColor RX 7900 XT Hellhound 20GB
Storage	240GB Corsair MP510, 120GB KingDian S280
Display(s)	Nixeus VUE-24 (1080p144)
Case	Koolance PC2-601BLW + Koolance EHX1020CUV Radiator Kit
Audio Device(s)	Oculus CV-1
Power Supply	Antec Earthwatts EA-750 Semi-Modular
Mouse	Easterntimes Tech X-08, Zelotes C-12
Keyboard	Logitech 106-key, Romoral 15-Key Macro, Royal Kludge RK84
VR HMD	Oculus CV-1
Software	Windows 10 Pro Workstation, VMware Workstation 16 Pro, MS SQL Server 2016, Fan Control v120, Blender
Benchmark Scores	Cinebench R15: 1590cb Cinebench R20: 3530cb (7.83x451cb) CPU-Z 17.01.64: 481.2/3896.8 VRMark: 8009