KnotDNS 3.3.0 Released – High-Performance Authoritative DNS Server
The Czech register of names, cz.nic, has published the release of KnotDNS 3.3.0. KnotDNS is a high-performance authoritative DNS server that supports all modern DNS capabilities. The head of the project is written in the SI language and is distributed under the GPLv3 license.
KnotDNS is known for its focus on high-performance request processing. It offers a multi-flowing and mostly unclosed implementation, making it well-scalable on SMP systems. It also provides features like on-the-fly zone adding and removing, zone transmission between servers, DNS over HTTPS, dynamic updates (DDNS), NSID (RFC 5001), EDNS0 and DNSEC extensions (including NSEC3), and restrictions on responsibility intensity (RRL).
In the new issue:
- Added full support for DNS over QUIC (DOQ, RFC 9250). QUIC is a UDP-based protocol that supports multiplexing and provides encryption methods equivalent to TLS/SSL.
- Support for bidirectional zone transfer using the QUIC protocol (XFR Over QUIC, XOQ) and various authentication profiles.
- Added the possibility of automatic preliminary generation of reverse PTR records (‘zone.reverse-generate’).
- Added ‘zone.size’ and ‘zone.max-ttl’ features.
- Added support for consolidation of the primary server (‘Zone.Master-pin-Tolerance’).
- A new policy of generating the serial number of SOA, ‘Zone.serial-modulo’, has been added.
- Added ‘Dnssec Multi-Signer’ feature.
/Reports, release notes, official announcements.