[1948] Suggest listing all addresses in listen_on

The guide is modified to suggest to list all the addresses explicitly for a multi-homed server, since the wildcard addresses don't work well yet.
2025-08-30 21:45:37 +00:00 · 2012-05-24 12:55:24 +02:00
parent 2801bd9baa
commit 55a817bff1
1 changed files with 18 additions and 0 deletions
--- a/doc/guide/bind10-guide.xml
+++ b/doc/guide/bind10-guide.xml
@@ -1352,6 +1352,24 @@ This may be a temporary setting until then.
      and <varname>port</varname> number.
      By default, <command>b10-auth</command> listens on port 53
      on the IPv6 (::) and IPv4 (0.0.0.0) wildcard addresses.
+      <note>
+        <simpara>
+          The default configuration is not appropriate for a multi-homed host.
+          In case you have multiple public IP addresses, it is possible the
+          query UDP packet comes through one interface and the answer goes out
+          through another. This will probably be dropped by the client, as it
+          has a different source address than the one it sent the query to. The
+          client would fall back on TCP after several attempts, which works
+          well in this situation, but it is clearly not ideal.
+        </simpara>
+        <simpara>
+          There are plans to solve the problem in a way the server will handle
+          it itself. But until it is actually implemented, it is recommended to
+          alter the configuration &mdash; remove the wildcard addresses and list all
+          addresses explicitly. Then the server will answer on the same
+          interface as the request came, preserving the correct address.
+        </simpara>
+      </note>
              </simpara>
            </listitem>
          </varlistentry>