Hi Denis,
Thanks a lot for sharing your rules! See some comments below.
On 05. 07. 23 10:19, Denis MACHARD via dnsdist wrote:
-- Update the dynamic blocks with refused reply by default
setDynBlocksAction(DNSAction.Refused)
I was using DNSAction.Refused as well, later on I moved to
Hi
On 05/10/2023 10:41, Aleš Rygl via dnsdist wrote:
Thanks for your response. After some deep documentation reading
and config tweaking I am nearly on the previous values regarding CPU
load, apart from latency, which is still higher (1.3ms -> 2.3ms). I
suspect a different
Hi Remi,
On 02. 10. 23 13:53, Remi Gacogne via dnsdist wrote:
Hi Ales,
On 25/09/2023 16:09, Aleš Rygl via dnsdist wrote:
I would to kindly ask for help or and advice. I have just
upgraded one of our dnsdist instances from 1.7.4 do 1.8.4 together
with OS upgrade (Debian 11.7 to 12.1
Ah, I am sorry, the subject should be 1.7.4 Debian Bullseye vs 1.8.1
Bookworm. I am running 1.8.1 on Bookworm...
Ales
On 25. 09. 23 16:01, Aleš Rygl via dnsdist wrote:
Hello,
I would to kindly ask for help or and advice. I have just upgraded
one of our dnsdist instances from 1.7.4 do
Hello,
I would to kindly ask for help or and advice. I have just upgraded
one of our dnsdist instances from 1.7.4 do 1.8.4 together with OS
upgrade (Debian 11.7 to 12.1). Everything works fine, no issues observed
apart some deprecated config references. What is a big surprise to me is
On 23. 02. 21 20:29, Mark Moseley via dnsdist wrote:
On Tue, Feb 23, 2021 at 7:49 AM Remi Gacogne via dnsdist
mailto:dnsdist@mailman.powerdns.com>>
wrote:
Hi Aleš,
On 2/23/21 4:35 PM, Aleš Rygl via dnsdist wrote:
> My idea was that changing mode of agentx directory abo
Hello,
I am struggling a bit on dnsdist after upgrade to from 1.4.0 to 1.5.1. I
am using Debian 10.8 and dnsdist with SNMP support enabled. It looks
like dnsdist systemd unit file forces dnsdist to drop privileges to
_dnsdist user and _dnsdist group in 1.5.1:
[Service]
Hello,
I would like to to disable TLS versions in DoT/DoH lower than 1.3 from
security reasons. I am trying to use:
addTLSLocal('0.0.0.0', '/etc/dnsdist/cert.pem', '/etc/dnsdist/key.pem',
{ minTLSVersion='tls1.3', provider='OpenSSL' })
It seems that it does not work: when testing with
On 22. 11. 19 20:08, Chris Hofstaedtler | Deduktiva wrote:
* Brian Sullivan [191122 17:18]:
Hi,
I am trying to configure the snmpAgent in dnsdist and get the following log
message.
NET SNMP support is required to use snmpAgent()
I am running dnsdist 1.4.0-rc5. I assume that NET SNMP support
Hi all,
I am facing a bad file descriptor message when preparing our new
configuration where dnsdist is listening on multiple interfaces. The
situation is following. dnsdist is running on a sever with three bond
interfaces. Two of them have two IPv4 and IPv6 address on them and are
used for
Hi all,
It looks like that even in these days when everything is running in a
virtual environment I will get a new physical hardware (!) for dnsdist
servers. So I would have a question related to CPU selection. Is it
better to have rather more CPU cores or less cores with running on
higher
Hello dnsdist guys!
1st of all let me thank you for a new dnsdist version. I am really
appreciating your effort. Thanks!
I have noticed a small flaw after the upgrade from 1.2: counters are
shown with a really lot of decimal places which makes it hard to read.
See below.
# Name
Hi all,
I would like to ask you for recommendations regarding network performance
optimization for a server running Linux with dnsdist. I am still experincing
RcvbufErrors even if my setting for receive/send buffers is far from default:
~# sysctl -p
net.ipv4.conf.all.log_martians = 1
Hi dnsdist users.
I would like to share a little finding with
you. We have been suffering from pseudorandom subdomain attacks fo more
than two years mainly because openresolvers in crappy CPEs of our
customers. While analyzing the DNS traffic using topResponses in dnsdist
(thanks!) I have
14 matches
Mail list logo