summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMohit Mehta <mohit.mehta@vyatta.com>2010-04-14 16:09:12 -0700
committerMohit Mehta <mohit.mehta@vyatta.com>2010-04-14 16:09:12 -0700
commiteb6766e07ec2517ad0ff62e18527668c25dd116b (patch)
treecd4097539c8cdf517dcce085fae85e4030094bf6
parent376ecafc6373767ba96f72b5166bb2954e984829 (diff)
downloadvyatta-cfg-system-eb6766e07ec2517ad0ff62e18527668c25dd116b.tar.gz
vyatta-cfg-system-eb6766e07ec2517ad0ff62e18527668c25dd116b.zip
For Bug 5625 Not ready for DNSSEC implementation
* Increase EDNS max packet size to 4096 as recommended in RFC 5625. Note that this is margin for uncommon case and the previous default of 1280 should be fine in most cases as mentioned on IETF's mailing list
-rw-r--r--scripts/dns-forwarding/vyatta-dns-forwarding.pl1
1 files changed, 1 insertions, 0 deletions
diff --git a/scripts/dns-forwarding/vyatta-dns-forwarding.pl b/scripts/dns-forwarding/vyatta-dns-forwarding.pl
index 0caf8371..4334eaaa 100644
--- a/scripts/dns-forwarding/vyatta-dns-forwarding.pl
+++ b/scripts/dns-forwarding/vyatta-dns-forwarding.pl
@@ -51,6 +51,7 @@ sub dnsforwarding_get_constants {
$output = "#\n# autogenerated by vyatta-dns-forwarding.pl on $date\n#\n";
$output .= "log-facility=/var/log/dnsmasq.log\n";
$output .= "no-poll\n";
+ $output .= "edns-packet-max=4096\n";
system("rm -f /var/log/dnsmasq.log; touch /var/log/dnsmasq.log");
return $output;
}