Skip to content

hdais/nsd-avoid-fragmentation

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4,852 Commits
.github
.github
 
 
compat
compat
 
 
contrib
contrib
 
 
dnstap
dnstap
 
 
doc
doc
 
 
tpkg
tpkg
 
 
.cirrus.yml
.cirrus.yml
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile.in
Makefile.in
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
acx_nlnetlabs.m4
acx_nlnetlabs.m4
 
 
answer.c
answer.c
 
 
answer.h
answer.h
 
 
axfr.c
axfr.c
 
 
axfr.h
axfr.h
 
 
bitset.c
bitset.c
 
 
bitset.h
bitset.h
 
 
buffer.c
buffer.c
 
 
buffer.h
buffer.h
 
 
configlexer.lex
configlexer.lex
 
 
configparser.y
configparser.y
 
 
configure.ac
configure.ac
 
 
dbaccess.c
dbaccess.c
 
 
dbcreate.c
dbcreate.c
 
 
difffile.c
difffile.c
 
 
difffile.h
difffile.h
 
 
dname.c
dname.c
 
 
dname.h
dname.h
 
 
dns.c
dns.c
 
 
dns.h
dns.h
 
 
edns.c
edns.c
 
 
edns.h
edns.h
 
 
install-sh
install-sh
 
 
ipc.c
ipc.c
 
 
ipc.h
ipc.h
 
 
iterated_hash.c
iterated_hash.c
 
 
iterated_hash.h
iterated_hash.h
 
 
ixfr.c
ixfr.c
 
 
ixfr.h
ixfr.h
 
 
ixfrcreate.c
ixfrcreate.c
 
 
ixfrcreate.h
ixfrcreate.h
 
 
lookup3.c
lookup3.c
 
 
lookup3.h
lookup3.h
 
 
makedist.sh
makedist.sh
 
 
mini_event.c
mini_event.c
 
 
mini_event.h
mini_event.h
 
 
mkinstalldirs
mkinstalldirs
 
 
namedb.c
namedb.c
 
 
namedb.h
namedb.h
 
 
netio.c
netio.c
 
 
netio.h
netio.h
 
 
nsd-checkconf.8.in
nsd-checkconf.8.in
 
 
nsd-checkconf.c
nsd-checkconf.c
 
 
nsd-checkzone.8.in
nsd-checkzone.8.in
 
 
nsd-checkzone.c
nsd-checkzone.c
 
 
nsd-control-setup.sh.in
nsd-control-setup.sh.in
 
 
nsd-control.8.in
nsd-control.8.in
 
 
nsd-control.c
nsd-control.c
 
 
nsd-mem.c
nsd-mem.c
 
 
nsd.8.in
nsd.8.in
 
 
nsd.c
nsd.c
 
 
nsd.conf.5.in
nsd.conf.5.in
 
 
nsd.conf.sample.in
nsd.conf.sample.in
 
 
nsd.h
nsd.h
 
 
nsec3.c
nsec3.c
 
 
nsec3.h
nsec3.h
 
 
options.c
options.c
 
 
options.h
options.h
 
 
packet.c
packet.c
 
 
packet.h
packet.h
 
 
popen3.c
popen3.c
 
 
popen3.h
popen3.h
 
 
query.c
query.c
 
 
query.h
query.h
 
 
radtree.c
radtree.c
 
 
radtree.h
radtree.h
 
 
rbtree.c
rbtree.c
 
 
rbtree.h
rbtree.h
 
 
rdata.c
rdata.c
 
 
rdata.h
rdata.h
 
 
region-allocator.c
region-allocator.c
 
 
region-allocator.h
region-allocator.h
 
 
remote.c
remote.c
 
 
remote.h
remote.h
 
 
rrl.c
rrl.c
 
 
rrl.h
rrl.h
 
 
server.c
server.c
 
 
siphash.c
siphash.c
 
 
systemd.m4
systemd.m4
 
 
tsig-openssl.c
tsig-openssl.c
 
 
tsig-openssl.h
tsig-openssl.h
 
 
tsig.c
tsig.c
 
 
tsig.h
tsig.h
 
 
udb.c
udb.c
 
 
udb.h
udb.h
 
 
udbradtree.c
udbradtree.c
 
 
udbradtree.h
udbradtree.h
 
 
udbzone.c
udbzone.c
 
 

Repository files navigation

avoid-fragmentation implementation for NSD

This is an implementaion of draft-ietf-dnsop-avoid-fragmentation (Fragmentation Avoidance in DNS) for NSD.

Notes

  • Currently it works on Linux only due to getsockopt(IP_MTU) dependency.
  • Avoid-fragmentation mode is enabled on IPv4/UDP sockets only, since NSD already limits maximum size of IPv6/UDP to 1280 bytes.

How to build

git clone https://github.com/hdais/nsd-avoid-fragmentation
cd nsd-avoid-fragmentation
aclocal && autoconf && autoheader
./configure
make
make install

Debugging

Some debug messages available in verbose logging mode:

server:
  verbose: 3

Debug messages examples:

nsd[9837]: notice: avoid-fragmentation mode enabled: forcing maximum IPv4/UDP message size to PMTU
nsd[9847]: info: probe_pmtu: got pmtu to 192.0.2.1 (552 bytes): updating response maxlen from 1232 to 524

original README.md follows...

NSD

Travis Build Status Cirrus Build Status Packaging status CII Best Practices

The NLnet Labs Name Server Daemon (NSD) is an authoritative DNS name server. It has been developed for operations in environments where speed, reliability, stability and security are of high importance. If you have any feedback, we would love to hear from you. Don’t hesitate to create an issue on Github or post a message on the NSD mailing list. You can learn more about NSD by reading our documentation.

Compiling

Make sure you have the following installed:

  • C toolchain (the set of tools to compile C such as a compiler, linker, and assembler)
  • OpenSSL, with its include files (usually these are included in the "dev" version of the library)
  • libevent, with its include files (usually these are included in the "dev" version of the library)
  • flex
  • bison

The repository does not contain ./configure, but you can generate it like this (note that the ./configure is included in release tarballs so they do not have to be generated):

aclocal && autoconf && autoheader

NSD can be compiled and installed using:

./configure && make && make install

NSD configuration

The configuration options for NSD are described in the man pages, which are installed (use man nsd.conf) and are available on the NSD documentation page.

An example configuration file is located in nsd.conf.sample.

About

NSD fork for draft-ietf-dnsop-avoid-fragmentation

nlnetlabs.nl/nsd

Resources

Readme

License

BSD-3-Clause license

Security policy

Security policy
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C 79.4%
  • Shell 4.7%
  • M4 4.0%
  • Python 3.5%
  • Yacc 2.9%
  • Roff 2.8%
  • Other 2.7%