Am 2017-07-05 10:47, schrieb Rick Moen:
edns-buffer-size: <number>
Number of bytes size to advertise as the EDNS reassembly
buffer
size. This is the value put into datagrams over UDP
towards
peers. The actual buffer size is determined by
msg-buffer-size
(both for TCP and UDP). Do not set higher than that
value.
Default is 4096 which is RFC recommended. If you have
fragmen-
tation reassembly problems, usually seen as timeouts,
then a
value of 1480 can fix it.
Looks like that solved it. Same problem is described here:
https://serverfault.com/questions/405650/why-are-these-udp-packets-being-dropped
Large udp packets are dropped on its way.
But shouldn't DNSSEC use tcp instead of udp?
Jochen
_______________________________________________
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
