Change the default value for nocookie-udp-size back to 4096

The DNS Flag Day 2020 reduced all the EDNS buffer sizes to 1232.  In
this commit, we revert the default value for nocookie-udp-size back to
4096 because the option is too obscure and most people don't realize
that they also need to change this configuration option in addition to
max-udp-size.

(cherry picked from commit 79c196fc778a0e68eebcceaf04d03bf772ea70a3)

diff --git a/bin/named/config.c b/bin/named/config.c
index 1a787f3c57724044a9d349e314ef9a7206371a00..1c8c5a728544e3ce79a210874ffe742307d46e18 100644 (file)
--- a/bin/named/config.c
+++ b/bin/named/config.c
@@ -86,7 +86,7 @@ options {\n\
        memstatistics-file \"named.memstats\";\n\
 #      multiple-cnames <obsolete>;\n\
 #      named-xfer <obsolete>;\n\
-       nocookie-udp-size 1232;\n\
+       nocookie-udp-size 4096;\n\
        notify-rate 20;\n\
        nta-lifetime 3600;\n\
        nta-recheck 300;\n\

diff --git a/doc/arm/reference.rst b/doc/arm/reference.rst
index ce00f539a82f0f7aed3a69e17f4e2e675bc3691a..e6dbe215d38b13c751e713096f8dcd5ae4aa4524 100644 (file)
--- a/doc/arm/reference.rst
+++ b/doc/arm/reference.rst
@@ -1857,8 +1857,9 @@ Boolean Options
 ``nocookie-udp-size``
    This sets the maximum size of UDP responses that are sent to queries
    without a valid server COOKIE. A value below 128 is silently
-   raised to 128. The default value is 1232, but the ``max-udp-size``
-   option may further limit the response size.
+   raised to 128. The default value is 4096, but the ``max-udp-size``
+   option may further limit the response size as the default for
+   ``max-udp-size`` is 1232.
 
 ``sit-secret``
    This experimental option is obsolete.