From 91f86e3950f9a59a6da6d2937e84d8a3186f2789 Mon Sep 17 00:00:00 2001 From: Remi Gacogne Date: Fri, 21 Nov 2025 09:17:46 +0100 Subject: [PATCH] dnsdist: Raise the maximum number of descriptors to 1M When running under systemd there is a cap on the number of open file or socket descriptors that we can have at a given time. We used to set this to 16k which was a large enough value for most installations, but now that people are deploying DNSdist to offer DoT/DoH/DoQ/DoH3 to large numbers of users we are regularly getting complaints that the default value is too low. On the other hand I'm not aware of any case where having a cap actually prevented an issue where we would be opening too many descriptors. Therefore this commit is raising the default value to 1 millions, a large enough values for even very large setups dealing with > 100k incoming connections at a time. Signed-off-by: Remi Gacogne --- pdns/dnsdistdist/dnsdist.service.in | 2 +- pdns/dnsdistdist/dnsdist.service.meson.in | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/pdns/dnsdistdist/dnsdist.service.in b/pdns/dnsdistdist/dnsdist.service.in index e0a9b3bbb3..d2b03db2cf 100644 --- a/pdns/dnsdistdist/dnsdist.service.in +++ b/pdns/dnsdistdist/dnsdist.service.in @@ -20,7 +20,7 @@ StartLimitInterval=0 # Tuning TasksMax=8192 -LimitNOFILE=16384 +LimitNOFILE=1000000 # Note: increasing the amount of lockable memory is required to use eBPF support # LimitMEMLOCK=infinity diff --git a/pdns/dnsdistdist/dnsdist.service.meson.in b/pdns/dnsdistdist/dnsdist.service.meson.in index 186acece88..e5cc5e0568 100644 --- a/pdns/dnsdistdist/dnsdist.service.meson.in +++ b/pdns/dnsdistdist/dnsdist.service.meson.in @@ -20,7 +20,7 @@ StartLimitInterval=0 # Tuning TasksMax=8192 -LimitNOFILE=16384 +LimitNOFILE=1000000 # Note: increasing the amount of lockable memory is required to use eBPF support # LimitMEMLOCK=infinity -- 2.47.3