From: Otto Date: Fri, 5 Mar 2021 15:26:57 +0000 (+0100) Subject: Talk about the rec_control changes and the new non-resolving-... settings X-Git-Tag: rec-4.5.0-beta1~37^2~2 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=a48cc3be421e2a007aab7c1f0625f61257db7ba0;p=thirdparty%2Fpdns.git Talk about the rec_control changes and the new non-resolving-... settings --- diff --git a/pdns/recursordist/docs/upgrade.rst b/pdns/recursordist/docs/upgrade.rst index 76f44b344b..5de269031e 100644 --- a/pdns/recursordist/docs/upgrade.rst +++ b/pdns/recursordist/docs/upgrade.rst @@ -31,6 +31,13 @@ Special Domains Queries for all names in the ``.localhost`` domain will answer in accordance with :rfc:`6761` section 6.3 point 4. That means that they will be answered with ``127.0.0.1``, ``::1`` or a negative response. +:program:`rec_control` command writing to a file +^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ +For the commands that write to a file, the file to be dumped to is now opened by the :program:`rec_control` command itself using the credentials and the current working directory of the user running :program:`rec_control`. +A single minus *-* can be used as a filename to write the data to the standard output stream. +Additionally, a single minus *-* can be used as a filename to write the data to the standard output stream. +Previously the file was opened by the recursor, possibly in its chroot environment. + New Settings ^^^^^^^^^^^^ - The :ref:`setting-extended-resolution-errors` has been added, enabling adding EDNS Extended Errors to responses. @@ -38,7 +45,8 @@ New Settings - The :ref:`setting-ecs-ipv4-never-cache` and :ref:`setting-ecs-ipv6-never-cache` settings have been added, allowing an overrule of the existing decision whether to cache EDNS responses carrying subnet information. - The :ref:`setting-aggressive-nsec-cache-size` setting has been added, enabling the functionality described in :rfc:`8198`. - The :ref:`setting-x-dnssec-names` setting has been added, allowing DNSSEC metrics to be recorded in a different set of counter for given domains. - +- The :ref:`setting-non-resolving-ns-max-fails` and :ref:`setting-non-resolving-ns-throttle-time` settings have been added, allowing the control of the cache of nameservers failing to resolve. + Deprecated and changed settings ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ - The :ref:`setting-minimum-ttl-override` and :ref:`setting-ecs-minimum-ttl-override` defaults have ben changed from 0 to 1.