This commit is contained in:
11
knot.conf
11
knot.conf
@@ -13,18 +13,12 @@ server:
|
|||||||
|
|
||||||
# Disable recursion (authoritative only)
|
# Disable recursion (authoritative only)
|
||||||
answer-rotation: on
|
answer-rotation: on
|
||||||
semantic-checks: on
|
|
||||||
|
|
||||||
# Security settings
|
# Security settings
|
||||||
max-udp-payload: 4096
|
max-udp-payload: 4096
|
||||||
max-tcp-clients: 100
|
max-tcp-clients: 100
|
||||||
max-zone-size: 500M
|
max-zone-size: 500M
|
||||||
|
|
||||||
# Logging
|
|
||||||
log:
|
|
||||||
- target: syslog
|
|
||||||
any: info
|
|
||||||
|
|
||||||
# Database configuration
|
# Database configuration
|
||||||
database:
|
database:
|
||||||
storage: "/var/lib/knot"
|
storage: "/var/lib/knot"
|
||||||
@@ -48,7 +42,6 @@ policy:
|
|||||||
dnskey-ttl: 3600
|
dnskey-ttl: 3600
|
||||||
zone-max-ttl: 86400
|
zone-max-ttl: 86400
|
||||||
ksk-submission: parent_ds
|
ksk-submission: parent_ds
|
||||||
cds-cdnskey-publish: rollover
|
|
||||||
cds-cdnskey-publish: always
|
cds-cdnskey-publish: always
|
||||||
|
|
||||||
# Remote server configuration (for zone transfers, notifications)
|
# Remote server configuration (for zone transfers, notifications)
|
||||||
@@ -90,10 +83,6 @@ template:
|
|||||||
journal-content: changes
|
journal-content: changes
|
||||||
journal-max-usage: 10M
|
journal-max-usage: 10M
|
||||||
|
|
||||||
# Hidden primary: don't answer queries from public
|
|
||||||
# Only serve AXFR/IXFR to secondaries
|
|
||||||
master: on
|
|
||||||
|
|
||||||
# Zone configuration
|
# Zone configuration
|
||||||
zone:
|
zone:
|
||||||
- domain: my-dnssec-test-domain.de
|
- domain: my-dnssec-test-domain.de
|
||||||
|
|||||||
Reference in New Issue
Block a user