Hi @Martineau , a bit off topic. how do you get a udp of 8192
When I run dig github.com in unbound_manager, I get two replies. One from my WAN DNS, and another from unbound 127.0.0.1. The udp value from my WAN DNS is 512 and the udp value from unbound is 1472. Is this the same as the edns-buffer-size which is 1472 by default?
However, when I run dig outside of unbound manager in the router, dig @127.0.0.1 github.com, the udp is 1280. This udp value is the same at 1280 when I run dig @192.168.1.1 from my client machine. It seems the maximum I get from my client is 1280.
However, when I run dig +short rs.dns-oarc.net from pc to query different DNS server, I get different DNS reply size limit. I set DNSFilter to non-filtering when run the dig command.
I don't see any issue on normal usage. Just wondering if the udp value has any relation with edns-buffer-size. And if I need to lower the number as the reply size limit is lower than 1472.
Edit: I try to change edns-buffer-size to 4096. In unbound-manager, when I run dig command, the udp is shown as 4096. But when I exit unbound and run dig from router, the udp size is back to 1280.
; EDNS: version: 0, flags:; udp: 8192
?When I run dig github.com in unbound_manager, I get two replies. One from my WAN DNS, and another from unbound 127.0.0.1. The udp value from my WAN DNS is 512 and the udp value from unbound is 1472. Is this the same as the edns-buffer-size which is 1472 by default?
However, when I run dig outside of unbound manager in the router, dig @127.0.0.1 github.com, the udp is 1280. This udp value is the same at 1280 when I run dig @192.168.1.1 from my client machine. It seems the maximum I get from my client is 1280.
However, when I run dig +short rs.dns-oarc.net from pc to query different DNS server, I get different DNS reply size limit. I set DNSFilter to non-filtering when run the dig command.
I don't see any issue on normal usage. Just wondering if the udp value has any relation with edns-buffer-size. And if I need to lower the number as the reply size limit is lower than 1472.
Code:
C:\>dig github.com
; <<>> DiG 9.16.12 <<>> github.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57643
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1280
;; QUESTION SECTION:
;github.com. IN A
;; ANSWER SECTION:
github.com. 2174 IN A 20.205.243.166
;; Query time: 2 msec
;; SERVER: 192.168.1.1#53(192.168.1.1)
...snipped...
C:\>dig +short rs.dns-oarc.net txt @192.168.1.1
rst.x1013.rs.dns-oarc.net.
rst.x1443.x1013.rs.dns-oarc.net.
rst.x1414.x1443.x1013.rs.dns-oarc.net.
"x.x.x.xDNS reply size limit is at least 1443"
"x.x.x.x sent EDNS buffer size 1472"
C:\>dig +short rs.dns-oarc.net txt @1.1.1.1
rst.x1431.rs.dns-oarc.net.
rst.x1441.x1431.rs.dns-oarc.net.
rst.x1400.x1441.x1431.rs.dns-oarc.net.
"2400:cb00:242:1024::ac45:134a DNS reply size limit is at least 1441"
"2400:cb00:242:1024::ac45:134a sent EDNS buffer size 1452"
C:\>dig +short rs.dns-oarc.net txt @9.9.9.9
rst.x1196.rs.dns-oarc.net.
rst.x1206.x1196.rs.dns-oarc.net.
rst.x1212.x1206.x1196.rs.dns-oarc.net.
"74.63.20.243 sent EDNS buffer size 1232"
"74.63.20.243 DNS reply size limit is at least 1212"
C:\>dig +short rs.dns-oarc.net txt @8.8.8.8
rst.x1363.rs.dns-oarc.net.
rst.x1373.x1363.rs.dns-oarc.net.
rst.x1344.x1373.x1363.rs.dns-oarc.net.
"74.125.190.20 DNS reply size limit is at least 1373"
"74.125.190.20 sent EDNS buffer size 1400"
C:\>dig +short rs.dns-oarc.net txt @8.8.4.4
rst.x1384.rs.dns-oarc.net.
rst.x1347.x1384.rs.dns-oarc.net.
rst.x1353.x1347.x1384.rs.dns-oarc.net.
"2404:6800:4003:c05::105 DNS reply size limit is at least 1384"
"2404:6800:4003:c05::105 sent EDNS buffer size 1400"
Edit: I try to change edns-buffer-size to 4096. In unbound-manager, when I run dig command, the udp is shown as 4096. But when I exit unbound and run dig from router, the udp size is back to 1280.
Last edited: