I-ProHoster > Блог > izindaba ze-inthanethi > I-KnotDNS 2.9.0 Ukukhishwa Kweseva ye-DNS

I-KnotDNS 2.9.0 Ukukhishwa Kweseva ye-DNS

eshicilelwe ukukhululwa I-KnotDNS 2.9.0, iseva ye-DNS enegunya lokusebenza okuphezulu (i-recursor yenziwe njengohlelo lokusebenza oluhlukile) esekela zonke izici zesimanje ze-DNS. Le phrojekthi ithuthukiswe yi-Czech naming registry CZ.NIC, ebhalwe ngo-C kanye isatshalaliswa ngu ilayisensi ngaphansi kwe-GPLv3.

I-KnotDNS ibonakala ngokugxila ekusebenzeni okuphezulu kokucubungula imibuzo, okusebenzisa ukuqaliswa okunezintambo eziningi futhi ikakhulukazi okungavimbeli okukala kahle ezinhlelweni ze-SMP. Izici ezinjengokwengeza nokukhipha amazoni endizeni, ukudluliselwa kwendawo yeseva-kuya-kuseva, i-DDNS (izibuyekezo eziguqukayo), i-NSID (RFC 5001), izandiso ze-EDNS0 ne-DNSSEC (okuhlanganisa i-NSEC3), imikhawulo yesilinganiso sokuphendula (RRL) inikeziwe.

Ekukhishweni okusha:

  • Kusetshenziswe ukusekelwa okugcwele kwezibalo ezihlukene zezinombolo ze-serial (SOA) zezoni kumaseva ayinhloko nesigqila, lapho isiginesha yedijithali yendawo isetshenziswa kuseva yesigqila;
  • Ukwesekwa okwengeziwe kokufakiwe ngama-wildcards kumojula ye-geoip;
  • Ku-DNSSEC, ukulungiselelwa okusha kwe-'rrsig-pre-refresh' kungeziwe ukunciphisa imvamisa yemicimbi yokusayina yendawo;
  • Kwengezwe ukulungiselelwa okuthi "tcp-reuseport" ukuze kusethwe imodi ye-SO_REUSEPORT(_LB) yamasokhethi e-TCP;
  • Ukusetha okungeziwe okuthi "tcp-io-timeout" ukuze kukhawulwe isikhathi semisebenzi ye-I/O engenayo nge-TCP;
  • Kukhuphule ngokuphawulekayo ukusebenza kwemisebenzi yokuguqulwa kokuqukethwe kwendawo;
  • Ukusekelwa kokulungiswa kabusha kwezixhumi ezibonakalayo nezibambi kunqanyuliwe, njengoba kungenakukwazi ukwenziwa ngemva kokuba inqubo isisethe kabusha amalungelo ayo;
  • Ukuqaliswa kwe-DNS Cookies kuye kwasetshenzwa kabusha ukuze kuhambisane ngokugcwele nokusalungiswa kwencazelo ye-dnsop-server-cookies;
  • Ngokuzenzakalelayo, umkhawulo wokuxhumeka kwe-TCP manje ukhawulelwe engxenyeni yomkhawulo wesistimu enanini lezichazi zefayela, futhi inombolo yamafayela avuliwe manje isethwe ku-1048576;
  • Lapho ukhetha inani labaphathi be-run, inani lama-CPU selisetshenzisiwe, kodwa hhayi ngaphansi kwe-10;
  • Kuqanjwe kabusha izinketho eziningi, isibonelo 'server.tcp-reply-timeout' kuya ku-'server.tcp-remote-io-timeout', 'server.max-tcp-clients' kuya ku-'server.tcp-max-clients', 'template .journal-db' kuya ku-'database.journal-db' njll. Ukusekelwa kwamagama amadala kuzoqhubeka kuze kube okungenani ukukhishwa okukhulu okulandelayo.

Source: opennet.ru

Engeza amazwana