Change the default value for nocookie-udp-size back to 4096

The DNS Flag Day 2020 reduced all the EDNS buffer sizes to 1232.  In
this commit, we revert the default value for nocookie-udp-size back to
4096 because the option is too obscure and most people don't realize
that they also need to change this configuration option in addition to
max-udp-size.

(cherry picked from commit 79c196fc778a0e68eebcceaf04d03bf772ea70a3)

diff --git a/bin/named/config.c b/bin/named/config.c
index 18710ab538a363fd6ac8820f64a33ffe217a5878..fbd2f2126c133c46136b5be91e0b75b6199eea2c 100644 (file)
--- a/bin/named/config.c
+++ b/bin/named/config.c
@@ -90,7 +90,7 @@ options {\n\
        memstatistics-file \"named.memstats\";\n\
 #      multiple-cnames <obsolete>;\n\
 #      named-xfer <obsolete>;\n\
-       nocookie-udp-size 1232;\n\
+       nocookie-udp-size 4096;\n\
        notify-rate 20;\n\
        nta-lifetime 3600;\n\
        nta-recheck 300;\n\

diff --git a/doc/arm/Bv9ARM-book.xml b/doc/arm/Bv9ARM-book.xml
index 466a529506557881523c63d7d1b25c980d4ea134..5790fb6847fc2bbe8660c1a2e1f02a40a146a3d7 100644 (file)
--- a/doc/arm/Bv9ARM-book.xml
+++ b/doc/arm/Bv9ARM-book.xml
@@ -6211,8 +6211,9 @@ options {
                  This sets the maximum size of UDP responses that are
                  sent to queries without a valid server COOKIE. A value
                  below 128 is silently raised to 128. The default
-                 value is 1232, but the <command>max-udp-size</command>
-                 option may further limit the response size.
+                 value is 4096, but the <command>max-udp-size</command>
+                 option may further limit the response size as the default
+                 for <command>max-udp-size</command> is 1232.
                </para>
              </listitem>
            </varlistentry>