bind9/doc
Evan Hunt ea36796f82 [v9_9] DDoS mitigation features
3938.	[func]		Added quotas to be used in recursive resolvers
			that are under high query load for names in zones
			whose authoritative servers are nonresponsive or
			are experiencing a denial of service attack.

			- "fetches-per-server" limits the number of
			  simultaneous queries that can be sent to any
			  single authoritative server.  The configured
			  value is a starting point; it is automatically
			  adjusted downward if the server is partially or
			  completely non-responsive. The algorithm used to
			  adjust the quota can be configured via the
			  "fetch-quota-params" option.
			- "fetches-per-zone" limits the number of
			  simultaneous queries that can be sent for names
			  within a single domain.  (Note: Unlike
			  "fetches-per-server", this value is not
			  self-tuning.)
			- New stats counters have been added to count
			  queries spilled due to these quotas.

			These options are not available by default;
			use "configure --enable-fetchlimit" (or
			--enable-developer) to include them in the build.

			See the ARM for details of these options. [RT #37125]
2015-07-08 23:00:58 -07:00
..
arm [v9_9] DDoS mitigation features 2015-07-08 23:00:58 -07:00
design update copyright notice / whitespace 2015-05-28 23:46:13 +00:00
dev update copyright notice 2014-04-12 23:45:29 +00:00
doxygen update copyright notice 2012-06-29 23:45:45 +00:00
draft [v9_9] updated published drafts 2014-02-14 08:54:25 -08:00
expired Reverted accidental bulk commit with log message of "%" 2001-10-02 17:20:46 +00:00
markdown [v9_9] add style and developer guide source 2014-12-31 12:51:17 -08:00
misc regen v9_9 2014-11-20 01:12:30 +00:00
rfc 4117. [protocol] Add EMPTY.AS112.ARPA as per RFC 7534. 2015-05-15 08:23:43 +10:00
xsl update copyright notice / whitespace 2015-01-14 23:46:09 +00:00
Makefile.in update copyright notice 2012-06-29 23:45:45 +00:00