[Dnsmasq-discuss] [PATCH] --dont-mirror-queries option
Simon Kelley
simon at thekelleys.org.uk
Fri Mar 4 21:35:36 GMT 2016
On 01/03/16 21:23, Kurt H Maier wrote:
> On Tue, Mar 01, 2016 at 06:50:14PM +0000, Simon Kelley wrote:
>> On 24/02/16 23:38, Kurt H Maier wrote:
>>
>> This approach assumes that all the servers are dnsmasq, and running the
>> loop-detection code, which is a reasonable assumption. Once a query
>> escapes from the "cloud" of interconnected dnsmasq servers towards an
>> upstream server, the EDNS0 options are no longer required and can be
>> stripped without problem. (They will be stripped from replies.)
>
> Part of the concern here was that in some of these deployments we have
> 'enclaves' of devices with dnsmasq on the edge nodes. I'm concerned
> about the interaction on those edges, because EDNS0 data suddenly
> disappearing has caused problems for me in the past. I'm also concerned
> about whether we'll have to re-architect our DNS infrastructure to avoid
> EDNS0 data growing too large. Do you have draft code for this solution
> anywhere?
>
> Thanks,
> khm
>
>
No draft code yet. No version of dnsmasq has ever removed EDNS0 from
queries, and note that queries are all we're concerned about here. The
EDNS0 options should not be included in replies. Packet size of queries
is not generally a problem.
Cheers,
Simon.
More information about the Dnsmasq-discuss
mailing list