Change the default value for nocookie-udp-size back to 4096

The DNS Flag Day 2020 reduced all the EDNS buffer sizes to 1232.  In
this commit, we revert the default value for nocookie-udp-size back to
4096 because the option is too obscure and most people don't realize
that they also need to change this configuration option in addition to
max-udp-size.

diff --git a/bin/named/config.c b/bin/named/config.c
index 437d92ab5b6b3491be91fe8293257ac567335e30..4e282914ee170d68e1051876b412b7fbd1dbebcd 100644 (file)
--- a/bin/named/config.c
+++ b/bin/named/config.c
@@ -87,7 +87,7 @@ options {\n\
        memstatistics-file \"named.memstats\";\n\
 #      multiple-cnames <obsolete>;\n\
 #      named-xfer <obsolete>;\n\
-       nocookie-udp-size 1232;\n\
+       nocookie-udp-size 4096;\n\
        notify-rate 20;\n\
        nta-lifetime 3600;\n\
        nta-recheck 300;\n\

diff --git a/doc/arm/reference.rst b/doc/arm/reference.rst
index fd40de3837562378863501d1b3d629b35e700eb7..726f37ed5a8eafefe4ba5eadaf0b3411151d8667 100644 (file)
--- a/doc/arm/reference.rst
+++ b/doc/arm/reference.rst
@@ -1855,8 +1855,9 @@ Boolean Options
 ``nocookie-udp-size``
    This sets the maximum size of UDP responses that are sent to queries
    without a valid server COOKIE. A value below 128 is silently
-   raised to 128. The default value is 1232, but the ``max-udp-size``
-   option may further limit the response size.
+   raised to 128. The default value is 4096, but the ``max-udp-size``
+   option may further limit the response size as the default for
+   ``max-udp-size`` is 1232.
 
 ``sit-secret``
    This experimental option is obsolete.