Mirrors/coredns
1
0
Fork 0
mirror of https://github.com/coredns/coredns.git synced 2025-12-04 01:15:11 -05:00
Code Issues Packages Projects Releases Wiki Activity

Don't add OPT RR to non-EDNS0 queries (#5368)

Browse Source 
* Don't add OPT RR to non-EDNS0 queries

Signed-off-by: Patrick W. Healy <phealy@phealy.com>
Signed-off-by: Patrick W. Healy <patrick.healy@microsoft.com>

* Update plugin/bufsize/README.md

Co-authored-by: Chris O'Haver <cohaver@infoblox.com>
Signed-off-by: Patrick W. Healy <patrick.healy@microsoft.com>

Co-authored-by: Chris O'Haver <cohaver@infoblox.com>
This commit is contained in:
Patrick W. Healy
2022-05-06 14:34:12 -05:00
committed by GitHub
parent 7a7b0a2b9b
commit a5b9749462
3 changed files with 10 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
plugin/bufsize/README.md
View File

@@ -5,6 +5,7 @@
## Description
*bufsize* limits a requester's UDP payload size.
It prevents IP fragmentation, mitigating certain DNS vulnerabilities.
This will only affect queries that have an OPT RR.
## Syntax
```txt
@@ -36,4 +37,3 @@ Enable limiting the buffer size as an authoritative nameserver:
## Considerations
- Setting 1232 bytes to bufsize may avoid fragmentation on the majority of networks in use today, but it depends on the MTU of the physical network links.
- For now, if a client does not use EDNS, this plugin adds OPT RR.