summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2021-10-13 09:32:14 +0200
committerChristian Poessinger <christian@poessinger.com>2021-10-13 09:32:14 +0200
commit90172aca00d3fbddbb474a2248a24e48fddeb981 (patch)
tree0b45111aa32412681fdbdfd0432c434e70518219
parentf51f769c621a41501735c062953eddf227f20b86 (diff)
downloadvyos-documentation-90172aca00d3fbddbb474a2248a24e48fddeb981.tar.gz
vyos-documentation-90172aca00d3fbddbb474a2248a24e48fddeb981.zip
dns: improve CLI commands by adding missing parameters
-rw-r--r--docs/configuration/service/dns.rst15
1 files changed, 9 insertions, 6 deletions
diff --git a/docs/configuration/service/dns.rst b/docs/configuration/service/dns.rst
index dff24361..4391b453 100644
--- a/docs/configuration/service/dns.rst
+++ b/docs/configuration/service/dns.rst
@@ -94,16 +94,19 @@ avoid being tracked by the provider of your upstream DNS server.
Maximum number of DNS cache entries. 1 million per CPU core will generally
suffice for most installations.
-.. cfgcmd:: set service dns forwarding negative-ttl
+ This defaults to 10000.
+
+.. cfgcmd:: set service dns forwarding negative-ttl <0-7200>
A query for which there is authoritatively no answer is cached to quickly
deny a record's existence later on, without putting a heavy load on the
remote server. In practice, caches can become saturated with hundreds of
- thousands of hosts which are tried only once. This setting, which defaults
- to 3600 seconds, puts a maximum on the amount of time negative entries are
- cached.
+ thousands of hosts which are tried only once.
+
+ This setting, which defaults to 3600 seconds, puts a maximum on the amount
+ of time negative entries are cached.
-.. cfgcmd:: set service dns forwarding listen-address
+.. cfgcmd:: set service dns forwarding listen-address <address>
The local IPv4 or IPv6 addresses to bind the DNS forwarder to. The forwarder
will listen on this address for incoming connections.
@@ -111,7 +114,7 @@ avoid being tracked by the provider of your upstream DNS server.
.. cfgcmd:: set service dns forwarding no-serve-rfc1918
This makes the server authoritatively not aware of: 10.in-addr.arpa,
- 168.192.in-addr.arpa, 16-31.172.in-addr.arpa, which enabling upstream
+ 168.192.in-addr.arpa, 16-31.172.in-addr.arpa, which enabling upstream
DNS server(s) to be used for reverse lookups of these zones.
Example