From 79c196fc778a0e68eebcceaf04d03bf772ea70a3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ond=C5=99ej=20Sur=C3=BD?= Date: Tue, 1 Dec 2020 18:53:26 +0100 Subject: [PATCH] Change the default value for nocookie-udp-size back to 4096 The DNS Flag Day 2020 reduced all the EDNS buffer sizes to 1232. In this commit, we revert the default value for nocookie-udp-size back to 4096 because the option is too obscure and most people don't realize that they also need to change this configuration option in addition to max-udp-size. --- bin/named/config.c | 2 +- doc/arm/reference.rst | 5 +++-- 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/bin/named/config.c b/bin/named/config.c index 437d92ab5b..4e282914ee 100644 --- a/bin/named/config.c +++ b/bin/named/config.c @@ -87,7 +87,7 @@ options {\n\ memstatistics-file \"named.memstats\";\n\ # multiple-cnames ;\n\ # named-xfer ;\n\ - nocookie-udp-size 1232;\n\ + nocookie-udp-size 4096;\n\ notify-rate 20;\n\ nta-lifetime 3600;\n\ nta-recheck 300;\n\ diff --git a/doc/arm/reference.rst b/doc/arm/reference.rst index fd40de3837..726f37ed5a 100644 --- a/doc/arm/reference.rst +++ b/doc/arm/reference.rst @@ -1855,8 +1855,9 @@ Boolean Options ``nocookie-udp-size`` This sets the maximum size of UDP responses that are sent to queries without a valid server COOKIE. A value below 128 is silently - raised to 128. The default value is 1232, but the ``max-udp-size`` - option may further limit the response size. + raised to 128. The default value is 4096, but the ``max-udp-size`` + option may further limit the response size as the default for + ``max-udp-size`` is 1232. ``sit-secret`` This experimental option is obsolete.