[Unbound-users] Maximum size of UDP responses?
wouter at nlnetlabs.nl
Mon Apr 8 08:50:21 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
On 03/29/2013 04:12 PM, Daisuke HIGASHI wrote:
>>> "max-udp-size" is almost exactly same as BIND9's.
>> Very good idea. I note that NSD has two parameters for that, one
>> for IPv4 responses and one for IPv6 (to deal with MTU issues). I
>> wonder if it's worth the complexity?
> This patch adds delective udp-max-size-ip4 and udp-max-size-ip6
> instead of udp-max-size.
> It seems OK and no performance impact but I'm not sure about use of
> a function "addr_is_ip6()".
Your patches are good quality. One thing I am not sure about is that
allow_minimal, with 512byte responses, does not allow the client to
use dnssec validation, because 512 is often too small to do so. Or do
you want it to use TCP as it receives +TC replies?
Also, additional configuration options are not really good; we want to
avoid code-bloat. If this is useful for many users, it could be
added, as the operational environment for DNS services changes. Is
this more of an experiment (it seems now), or a necessary feature?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
-----END PGP SIGNATURE-----
More information about the Unbound-users