September 22, 2021 3:03 PM, "Andrey Sedletsky via Pdns-users"
wrote:
> Good afternoon!
Hi Andrey,
> After restarting the pdns-recursor process, the number of "outgoing
> query timeout" and "over capacity drops" sharply increases, which leads
> to serious degradation of the service.
> This
Hi,
Am 22.09.21 um 08:50 schrieb Thomas Mieslinger via Pdns-users:
Hi Peter,
Am 21.09.21 um 18:20 schrieb Peter van Dijk via Pdns-users:
Hello Thomas,
On Tue, 2021-09-21 at 13:53 +0200, Thomas Mieslinger via Pdns-users
wrote:
[..]
Can you try aggressive-nsec-cache-size=0 (on 4.5.1) and/or
Good afternoon!
After restarting the pdns-recursor process, the number of "outgoing
query timeout" and "over capacity drops" sharply increases, which leads
to serious degradation of the service.
This behavior manifests itself at times of high load on the server (more
than 400 thousand requests
On 22/09/2021 10:54, inform...@trinaxab.se wrote:
July 9, 2021 5:12 PM, "Brian Candler" wrote:
On 09/07/2021 15:29,inform...@trinaxab.se wrote:
Specifically, the intention is to use a single wildcard certificate
*.intra.example.com rather than
one for each subdomain. I don't know if that
July 9, 2021 5:12 PM, "Brian Candler" wrote:
> On 09/07/2021 15:29, inform...@trinaxab.se wrote:
>
>> Specifically, the intention is to use a single wildcard certificate
>> *.intra.example.com rather than
>> one for each subdomain. I don't know if that changes anything.
> No difference. You
Hi Peter,
Am 21.09.21 um 18:20 schrieb Peter van Dijk via Pdns-users:
Hello Thomas,
On Tue, 2021-09-21 at 13:53 +0200, Thomas Mieslinger via Pdns-users
wrote:
dog.80 IN NSEC domains. NS DS RRSIG NSEC
This looks like aggressive NSEC reuse (