[nsd/el6] updated nsd.conf with new options. new sources

Paul Wouters pwouters at fedoraproject.org
Mon Jul 22 14:24:27 UTC 2013 

commit a486d27b0c8ad03ac34f2b555c6610160e7ea08b
Author: Paul Wouters <pwouters at redhat.com>
Date:   Mon Jul 22 10:23:54 2013 -0400

    updated nsd.conf with new options. new sources

 .gitignore |    1 +
 nsd.conf   |   36 ++++++++++++++++++++++++++++++++++++
 sources    |    2 +-
 3 files changed, 38 insertions(+), 1 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index 0fc2bcc..1fd76b8 100644
--- a/.gitignore
+++ b/.gitignore
@@ -22,3 +22,4 @@ nsd-3.2.8.tar.gz
 /nsd-3.2.13.tar.gz
 /nsd-3.2.14.tar.gz
 /nsd-3.2.15.tar.gz
+/nsd-3.2.16.tar.gz
diff --git a/nsd.conf b/nsd.conf
index c694879..ac59229 100644
--- a/nsd.conf
+++ b/nsd.conf
@@ -17,6 +17,9 @@ server:
 	# ip-address: 1.2.3.4 at 5678
 	# ip-address: 12fe::8ef0
 
+	# Allow binding to non local addresses. Default no.
+	# ip-transparent: no
+
 	# don't answer VERSION.BIND and VERSION.SERVER CHAOS class queries
 	# hide-version: no
 
@@ -71,6 +74,9 @@ server:
 	# statistics are produced every number of seconds.
 	# statistics: 3600
 
+	# if per zone statistics is enabled, file to store statistics.
+	# zone-stats-file: "/var/log/nsd.stats"
+
 	# Run NSD in a chroot-jail.
 	# make sure to have pidfile and database reachable from there.
 	# by default, no chroot-jail is used.
@@ -98,4 +104,34 @@ server:
 	# Verbosity level.
 	# verbosity: 0
 
+	# RRLconfig
+	# Response Rate Limiting, size of the hashtable. Default 1000000.
+	# rrl-size: 1000000
+
+	# Response Rate Limiting, maximum QPS allowed (from one query source).
+	# Default 200. If set to 0, ratelimiting is disabled. Also set
+	# rrl-whitelist-ratelimit to 0 to disable ratelimit processing.
+	# rrl-ratelimit: 200
+
+	# Response Rate Limiting, number of packets to discard before
+	# sending a SLIP response (a truncated one, allowing an honest
+	# resolver to retry with TCP). Default is 2 (one half of the
+	# queries will receive a SLIP response, 0 disables SLIP (all
+	# packets are discarded), 1 means every request will get a
+	# SLIP response.
+	# rrl-slip: 2
+
+	# Response Rate Limiting, IPv4 prefix length. Addresses are
+	# grouped by netblock. 
+	# rrl-ipv4-prefix-length: 24
+
+	# Response Rate Limiting, IPv6 prefix length. Addresses are
+	# grouped by netblock. 
+	# rrl-ipv6-prefix-length: 64
+
+	# Response Rate Limiting, maximum QPS allowed (from one query source)
+	# for whitelisted types. Default 2000.
+	# rrl-whitelist-ratelimit: 2000
+	# RRLend
+
 # include: "/etc/nsd/other.conf"
diff --git a/sources b/sources
index 3b99274..96bc7f3 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-b5fdbf78bd3f4133d1295af21a61f7c8  nsd-3.2.15.tar.gz
+c16a845884851d26c85d5117f11e5f08  nsd-3.2.16.tar.gz

More information about the scm-commits mailing list