impact of qname minimization with Unbound as forwarder
A. Schulze
sca at andreasschulze.de
Wed Oct 22 10:07:15 UTC 2025
Sohka via Unbound-users:
> I would like to configure Unbound as a DNS forwarder with Quad9 as the
> upstream recursive resolver.
>
> I read in their best practices document that the qname-minimization
> option should be disabled as it significantly reduces performance.
> https://docs.quad9.net/Quad9_For_Organizations/DNS_Forwarder_Best_Practices/#__tabbed_3_3
Hello,
well, qname-minimization limit "root's" knowlege that a client is
interestes in foobar.mumble.example.org.
because the root nameserver can only answer "ask .org".
But if you forward any queries to one destination anyway, I see no
value for qname-minimization.
So, yes quad9's suggestion sounds right to me.
Andreas
More information about the Unbound-users
mailing list