What is it?
Knot Resolver is a modern DNS resolver which will soon be included in IPFire replacing Unbound.
Who is working on it?
Current Status
- Targeted Release: Core Update 203, Currently merged into next
- Tracker Bug: #13972
Description
Unbound has been working inside IPFire for many years and replaced dnsmasq. Knot Resolver will now replace Unbound as the list of problems that we are experiencing with it is getting only longer. From general stability issues, difficult integration with other services, unbounded (not a pun) memory consumption, we are migrating to Knot Resolver which is a much fresher implementation offering great results in our tests.
Benefits to IPFire
DNS resolution has to be fast to ensure a snappy network. Knot Resolver will greatly bring down DNS latency by offering a persistent cache, will be greatly integrated into other IPFire services due to its scripting capabilities, and we expect a much more robust DNS service because of the much more modern implementation of the DNS protocol through the Knot DNS project.
Impact
We will replace Unbound, so any custom configuration will no longer be supported.
Potentially, Knot Resolver has no support for "strict" DNS query name minimisation. Since this is not properly working with Unbound either, this is not a blocker or a big loss.
Documentation
TODO
Feedback
None, yet
Dependencies
None
Release Notes
TODO