diff options
author | Christian Poessinger <christian@poessinger.com> | 2021-10-13 09:32:14 +0200 |
---|---|---|
committer | Christian Poessinger <christian@poessinger.com> | 2021-10-13 09:32:14 +0200 |
commit | 90172aca00d3fbddbb474a2248a24e48fddeb981 (patch) | |
tree | 0b45111aa32412681fdbdfd0432c434e70518219 | |
parent | f51f769c621a41501735c062953eddf227f20b86 (diff) | |
download | vyos-documentation-90172aca00d3fbddbb474a2248a24e48fddeb981.tar.gz vyos-documentation-90172aca00d3fbddbb474a2248a24e48fddeb981.zip |
dns: improve CLI commands by adding missing parameters
-rw-r--r-- | docs/configuration/service/dns.rst | 15 |
1 files changed, 9 insertions, 6 deletions
diff --git a/docs/configuration/service/dns.rst b/docs/configuration/service/dns.rst index dff24361..4391b453 100644 --- a/docs/configuration/service/dns.rst +++ b/docs/configuration/service/dns.rst @@ -94,16 +94,19 @@ avoid being tracked by the provider of your upstream DNS server. Maximum number of DNS cache entries. 1 million per CPU core will generally suffice for most installations. -.. cfgcmd:: set service dns forwarding negative-ttl + This defaults to 10000. + +.. cfgcmd:: set service dns forwarding negative-ttl <0-7200> A query for which there is authoritatively no answer is cached to quickly deny a record's existence later on, without putting a heavy load on the remote server. In practice, caches can become saturated with hundreds of - thousands of hosts which are tried only once. This setting, which defaults - to 3600 seconds, puts a maximum on the amount of time negative entries are - cached. + thousands of hosts which are tried only once. + + This setting, which defaults to 3600 seconds, puts a maximum on the amount + of time negative entries are cached. -.. cfgcmd:: set service dns forwarding listen-address +.. cfgcmd:: set service dns forwarding listen-address <address> The local IPv4 or IPv6 addresses to bind the DNS forwarder to. The forwarder will listen on this address for incoming connections. @@ -111,7 +114,7 @@ avoid being tracked by the provider of your upstream DNS server. .. cfgcmd:: set service dns forwarding no-serve-rfc1918 This makes the server authoritatively not aware of: 10.in-addr.arpa, - 168.192.in-addr.arpa, 16-31.172.in-addr.arpa, which enabling upstream + 168.192.in-addr.arpa, 16-31.172.in-addr.arpa, which enabling upstream DNS server(s) to be used for reverse lookups of these zones. Example |