From: Remi Gacogne Date: Wed, 16 Feb 2022 14:51:23 +0000 (+0100) Subject: dnsdist: Document the default behaviour of setRandomizedIdsOverUDP and setRandomizedO... X-Git-Tag: rec-4.7.0-alpha1~11^2 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=refs%2Fpull%2F11163%2Fhead;p=thirdparty%2Fpdns.git dnsdist: Document the default behaviour of setRandomizedIdsOverUDP and setRandomizedOutgoingSockets --- diff --git a/pdns/dnsdistdist/docs/reference/tuning.rst b/pdns/dnsdistdist/docs/reference/tuning.rst index 9e2f517d22..1a8750868f 100644 --- a/pdns/dnsdistdist/docs/reference/tuning.rst +++ b/pdns/dnsdistdist/docs/reference/tuning.rst @@ -131,12 +131,14 @@ Tuning related functions Setting this parameter to true (default is false) will randomize the IDs in outgoing UDP queries, at a small performance cost, ignoring the :func:`setMaxUDPOutstanding` value. This is only useful if the path between dnsdist and the backend is not trusted and the 'TCP-only', DNS over TLS or DNS over HTTPS transports cannot be used. See also :func:`setRandomizedOutgoingSockets`. + The default is to use a linearly increasing counter from 0 to 65535, wrapping back to 0 when necessary. .. function:: setRandomizedOutgoingSockets(val): .. versionadded:: 1.8.0 Setting this parameter to true (default is false) will randomize the outgoing socket used when forwarding a query to a backend. + The default is to use a round-robin mechanism to select the outgoing socket. This requires configuring the backend to use more than one outgoing socket via the ``sockets`` parameter of :func:`newServer` to be of any use, and only makes sense if the path between dnsdist and the backend is not trusted and the 'TCP-only', DNS over TLS or DNS over HTTPS transports cannot be used.