Commit 55a817bf authored by Michal 'vorner' Vaner's avatar Michal 'vorner' Vaner

[1948] Suggest listing all addresses in listen_on

The guide is modified to suggest to list all the addresses explicitly
for a multi-homed server, since the wildcard addresses don't work well
yet.
parent 2801bd9b
......@@ -1352,6 +1352,24 @@ This may be a temporary setting until then.
and <varname>port</varname> number.
By default, <command>b10-auth</command> listens on port 53
on the IPv6 (::) and IPv4 (0.0.0.0) wildcard addresses.
<note>
<simpara>
The default configuration is not appropriate for a multi-homed host.
In case you have multiple public IP addresses, it is possible the
query UDP packet comes through one interface and the answer goes out
through another. This will probably be dropped by the client, as it
has a different source address than the one it sent the query to. The
client would fall back on TCP after several attempts, which works
well in this situation, but it is clearly not ideal.
</simpara>
<simpara>
There are plans to solve the problem in a way the server will handle
it itself. But until it is actually implemented, it is recommended to
alter the configuration &mdash; remove the wildcard addresses and list all
addresses explicitly. Then the server will answer on the same
interface as the request came, preserving the correct address.
</simpara>
</note>
</simpara>
</listitem>
</varlistentry>
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment