From: Vladimír Čunát <vladimir.cunat@nic.cz>
Date: Tue, 3 Oct 2023 11:06:31 +0000 (+0200)
Subject: doc/config-network-server: move warning to more relevant place
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=6f8c83d3591b874fbd4c82bc3a1dc5a01ab07dc5;p=thirdparty%2Fknot-resolver.git

doc/config-network-server: move warning to more relevant place
---

diff --git a/doc/config-network-server.rst b/doc/config-network-server.rst
index 469582df0..7e98dbca3 100644
--- a/doc/config-network-server.rst
+++ b/doc/config-network-server.rst
@@ -44,6 +44,13 @@ address + port combination.
       and interface names. Optionally, the port number may be specified using
       ``@`` as a separator, e.g. ``127.0.0.1@3535`` or ``eth0@5353``.
 
+      .. warning::
+
+         On machines with multiple IP addresses, avoid listening on wildcards like
+         ``0.0.0.0`` or ``::``. If a client can be reached through multiple addresses,
+         UDP answers from a wildcard address might pick a wrong source address - most
+         well-behaved clients will then refuse such a response.
+
    .. option:: port: <1-65535>
 
       :default: 53 (dns, xdp), 853 (dot), 443 (doh2, doh-legacy)
@@ -73,13 +80,6 @@ address + port combination.
          kind: xdp
        - unix-socket: /tmp/kres-socket  # bind to unix domain socked
 
-.. warning::
-
-   On machines with multiple IP addresses, avoid listening on wildcards like
-   ``0.0.0.0`` or ``::``. If a client can be reached through multiple addresses,
-   UDP answers from a wildcard address might pick a wrong source address - most
-   well-behaved clients will then refuse such a response.
-
 
 .. _config-network-proxyv2: