News

Version: 1.5.1

Features:

  • DDNS: Ability to process updates in bulk
  • Basic support for logging using systemd journal

Improvements:

  • Unified logging messages structure
  • DNSSEC: More strict controls for signing keys

Bugfixes:

  • DNSSEC: DNAMEs in RDATA were not lowercased before signing
  • EDNS: OPT RR were not put into responsing for some errors
  • TSIG: DDNS responses were not signed with TSIG
  • DDNS: Prerequisite checks failed for some inputs
  • knsupdate: Zone origin was not used for deletions

Version: 1.5.0

Features:

  • Pluggable query processing modules
  • Synthetic IPv4/IPv6 reverse/forward records (optional module)
  • dnstap support in both utilities & server (optional module)
  • NOTIFY message support and new TSIG section in kdig
  • Multi-master support
  • edns-client-subnet support in kdig
  • Optional asynchronous startup (config “asynchronous-start”)
  • Reimplemented DDNS forwarding

Improvements:

  • Query processing and core functionality overhaul
  • Performance and reduced memory footprint
  • Faster zone events scheduling
  • RFC compliant queries/responses in some corner cases
  • Log messages
  • New documentation (Sphinx)
  • Preempt task queue for faster reload
  • Lazy zone file write after zone transfer (governed by “zonefile-sync”)
  • Transfer sizes logged in bytes if needed
  • Logging outgoing NOTIFY messages
  • Logging unauthorized incoming NOTIFYs

Knot DNS is a high-performance authoritative-only DNS server which supports all key features of the domain name system including zone transfers and DNSSEC.

Key features

  • Open source
  • High-performance, multi-threaded, and mostly lock-free implementation which scales well on SMPs
  • Object-oriented design
  • Support for all important DNS protocols
    • Full and incremental zone transfers
    • Dynamic updates
    • EDNS0 and DNSSEC extensions, including NSEC3
    • Response Rate Limiting
    • NSID

Supported platforms

  • All major UNIX-like systems (Linux, FreeBSD, …)
  • x86 and x64 architectures

Main Goals

  • Meet the needs of root and TLD name servers
  • Very high response rate
  • Good scalability on SMP systems
  • Compliance with latest RFCs
  • Non-stop operation
  • Support for on-line addition and removal of zones
Jenkins Build Status Build Status Coverage Status