BIND 10 master, updated. cd77eba438268ed3624a8d1c6b859baf84d993e5 Merge #1948

BIND 10 source code commits bind10-changes at lists.isc.org
Mon May 28 10:51:53 UTC 2012 

The branch, master has been updated
       via  cd77eba438268ed3624a8d1c6b859baf84d993e5 (commit)
       via  b75e92ded404a7b0a7262ae6f0403813261e8a1a (commit)
       via  55a817bff19c1b61e2ce32d22a743d4a3073036c (commit)
      from  21d3d1aa2eba8be0c5260b562c2804f12951bb7d (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit cd77eba438268ed3624a8d1c6b859baf84d993e5
Merge: 21d3d1a b75e92d
Author: Michal 'vorner' Vaner <michal.vaner at nic.cz>
Date:   Mon May 28 12:34:17 2012 +0200

    Merge #1948
    
    This is the guide update to mention the listen_on workaround for multi-homed
    hosts.

commit b75e92ded404a7b0a7262ae6f0403813261e8a1a
Author: Mukund Sivaraman <muks at isc.org>
Date:   Mon May 28 10:31:51 2012 +0530

    [1948] Make minor editorial changes

commit 55a817bff19c1b61e2ce32d22a743d4a3073036c
Author: Michal 'vorner' Vaner <michal.vaner at nic.cz>
Date:   Thu May 24 12:55:24 2012 +0200

    [1948] Suggest listing all addresses in listen_on
    
    The guide is modified to suggest to list all the addresses explicitly
    for a multi-homed server, since the wildcard addresses don't work well
    yet.

-----------------------------------------------------------------------

Summary of changes:
 doc/guide/bind10-guide.xml |   18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

-----------------------------------------------------------------------
diff --git a/doc/guide/bind10-guide.xml b/doc/guide/bind10-guide.xml
index e2b3961..e5adb0c 100644
--- a/doc/guide/bind10-guide.xml
+++ b/doc/guide/bind10-guide.xml
@@ -1352,6 +1352,24 @@ This may be a temporary setting until then.
       and <varname>port</varname> number.
       By default, <command>b10-auth</command> listens on port 53
       on the IPv6 (::) and IPv4 (0.0.0.0) wildcard addresses.
+      <note>
+        <simpara>
+          The default configuration is currently not appropriate for a multi-homed host.
+          In case you have multiple public IP addresses, it is possible the
+          query UDP packet comes through one interface and the answer goes out
+          through another. The answer will probably be dropped by the client, as it
+          has a different source address than the one it sent the query to. The
+          client would fallback on TCP after several attempts, which works
+          well in this situation, but is clearly not ideal.
+        </simpara>
+        <simpara>
+          There are plans to solve the problem such that the server handles
+          it by itself. But until it is actually implemented, it is recommended to
+          alter the configuration — remove the wildcard addresses and list all
+          addresses explicitly. Then the server will answer on the same
+          interface the request came on, preserving the correct address.
+        </simpara>
+      </note>
               </simpara>
             </listitem>
           </varlistentry>

More information about the bind10-changes mailing list