ProHoster > Blog > internet news > KnotDNS 2.9.0 DNS Server Release

KnotDNS 2.9.0 DNS Server Release

Published Release KnotDNS 2.9.0, a high-performance authoritative DNS server (the recursor is made as a separate application) that supports all modern DNS features. The project is developed by the Czech naming registry CZ.NIC, written in C and spreads licensed under GPLv3.

KnotDNS is characterized by a focus on high query processing performance, which uses a multi-threaded and mostly non-blocking implementation that scales well on SMP systems. Features such as adding and removing zones on the fly, zone transfers between servers, DDNS (dynamic updates), NSID (RFC 5001), EDNS0 and DNSSEC extensions (including NSEC3), response rate limits (RRL) are provided.

In the new release:

  • Implemented full support for different calculation of serial numbers (SOA) for the zone on the master and slave servers, when the digital signature of the zone is used on the slave server;
  • Added support for entries with wildcards to the geoip module;
  • For DNSSEC, a new setting 'rrsig-pre-refresh' has been added to reduce the frequency of zone signing events;
  • Added setting "tcp-reuseport" to set SO_REUSEPORT(_LB) mode for TCP sockets;
  • Added setting "tcp-io-timeout" to limit the time of incoming I/O operations over TCP;
  • Significantly increased the performance of zone content modification operations;
  • Support for reconfiguration of network interfaces and handlers has been discontinued, since it cannot be performed after the process has reset its privileges;
  • The implementation of DNS Cookies has been reworked to fully comply with the draft draft-ietf-dnsop-server-cookies specification;
  • By default, the TCP connection limit is now limited to half the system limit on the number of file descriptors, and the number of open files is now set to 1048576;
  • When choosing the number of run handlers, the number of CPUs is now used, but not less than 10;
  • Renamed many options, for example 'server.tcp-reply-timeout' to 'server.tcp-remote-io-timeout', 'server.max-tcp-clients' to 'server.tcp-max-clients', 'template. journal-db' to 'database.journal-db' etc. Support for older names will continue until at least the next major release.

Source: opennet.ru

Add a comment