[nsd-users] NSD and RFC 8482 (ANY queries)
Paul Wouters
paul at nohats.ca
Sat Jan 26 16:16:57 UTC 2019
You cannot remove it. It has been enabled already in some distro’s. I for one assumed it implemented the Olafur’s RFC.
I would change the meaning to be that. Wether or not to perform RFC 8482 denial of ANY.
Paul
Sent from mobile device
> On Jan 26, 2019, at 09:03, A. Schulze <sca at andreasschulze.de> wrote:
>
>
>
>> Am 24.01.19 um 14:54 schrieb Wouter Wijngaards:
>> The deny-any was implemented because users asked for that. The patch is
>> very good and I have incorporated it, enabled by default. Do you think
>> the the deny-any option can be removed or have that control this behaviour?
>
> before I loose overview:
>
> deny-any mean the configuration option "refuse-any" available since nsd-4.1.21
> which currently set the TC bit on UDP and return all RR on TCP.
>
> with Daisuke's patch NSD would answer to ANY queries with a subset of available RRsets.
> -> only on UDP? or no matter which transport?
> -> a fixed subset or a random subset?
>
> Andreas
> _______________________________________________
> nsd-users mailing list
> nsd-users at NLnetLabs.nl
> https://open.nlnetlabs.nl/mailman/listinfo/nsd-users
More information about the nsd-users
mailing list