[nsd-users] NSD and RFC 8482 (ANY queries)

Paul Wouters paul at nohats.ca
Sat Jan 26 16:16:57 UTC 2019


You cannot remove it. It has been enabled already in some distro’s. I for one assumed it implemented the Olafur’s RFC.

I would change the meaning to be that. Wether or not to perform RFC 8482 denial of ANY.

Paul

Sent from mobile device

> On Jan 26, 2019, at 09:03, A. Schulze <sca at andreasschulze.de> wrote:
> 
> 
> 
>> Am 24.01.19 um 14:54 schrieb Wouter Wijngaards:
>> The deny-any was implemented because users asked for that.  The patch is
>> very good and I have incorporated it, enabled by default.  Do you think
>> the the deny-any option can be removed or have that control this behaviour?
> 
> before I loose overview:
> 
> deny-any mean the configuration option "refuse-any" available since nsd-4.1.21
> which currently set the TC bit on UDP and return all RR on TCP.
> 
> with Daisuke's patch NSD would answer to ANY queries with a subset of available RRsets.
> -> only on UDP? or no matter which transport?
> -> a fixed subset or a random subset?
> 
> Andreas
> _______________________________________________
> nsd-users mailing list
> nsd-users at NLnetLabs.nl
> https://open.nlnetlabs.nl/mailman/listinfo/nsd-users




More information about the nsd-users mailing list