dns: Always enable EDNS0
authorMichael Tremer <michael.tremer@ipfire.org>
Wed, 13 Feb 2019 17:45:05 +0000 (17:45 +0000)
committerMichael Tremer <michael.tremer@ipfire.org>
Wed, 13 Feb 2019 17:45:05 +0000 (17:45 +0000)
This is for all DNS queries originating from the firewall.

Since we have had DNS Flag Day, we are expecting all DNS servers
to support this now. If not, then you are very unlucky.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
src/functions/functions.dns

index 4cd5cb4..890f1ac 100644 (file)
@@ -245,6 +245,9 @@ dns_generate_resolvconf() {
 
        config_header "resolver configutation file" > ${file}
 
+       # Always enable EDNS0
+       print "option edns0\n" >> "${file}"
+
        if enabled DNS_RANDOMIZE; then
                print "option rotate\n" >> ${file}
        fi