2019-11-10 08:10:12 +00:00
# bufsize
## Name
*bufsize* - sizes EDNS0 buffer size to prevent IP fragmentation.
## Description
2019-11-14 11:13:49 -05:00
*bufsize* limits a requester's UDP payload size.
2020-05-04 10:02:58 -04:00
It prevents IP fragmentation, mitigating certain DNS vulnerabilities.
2019-11-10 08:10:12 +00:00
## Syntax
```txt
bufsize [SIZE]
```
2019-11-14 11:13:49 -05:00
**[SIZE]** is an int value for setting the buffer size.
The default value is 512, and the value must be within 512 - 4096.
2019-11-10 08:10:12 +00:00
Only one argument is acceptable, and it covers both IPv4 and IPv6.
## Examples
2019-11-14 07:37:45 +00:00
Enable limiting the buffer size of outgoing query to the resolver (172.31.0.10):
2019-11-10 08:10:12 +00:00
```corefile
. {
bufsize 512
forward . 172.31.0.10
log
}
```
2019-11-14 07:37:45 +00:00
Enable limiting the buffer size as an authoritative nameserver:
```corefile
. {
bufsize 512
file db.example.org
log
}
```
2019-11-10 08:10:12 +00:00
## Considerations
2019-11-14 07:37:45 +00:00
- Setting 1232 bytes to bufsize may avoid fragmentation on the majority of networks in use today, but it depends on the MTU of the physical network links.
2019-11-14 11:13:49 -05:00
- For now, if a client does not use EDNS, this plugin adds OPT RR.
