2015-05-18 12:12:16 -04:00
|
|
|
.. highlight:: none
|
2015-03-02 08:25:51 -05:00
|
|
|
.. _Introduction:
|
2014-04-15 11:12:13 -04:00
|
|
|
|
2015-03-02 08:25:51 -05:00
|
|
|
************
|
|
|
|
|
Introduction
|
|
|
|
|
************
|
2014-04-15 11:12:13 -04:00
|
|
|
|
|
|
|
|
What is Knot DNS
|
2015-03-02 08:25:51 -05:00
|
|
|
================
|
2014-04-15 11:12:13 -04:00
|
|
|
|
2015-07-01 07:05:17 -04:00
|
|
|
Knot DNS is a high-performance open-source DNS server. It
|
|
|
|
|
implements only the authoritative domain name service. Knot DNS
|
2017-06-19 07:31:55 -04:00
|
|
|
can reliably serve TLD domains as well as any other zones.
|
2014-04-15 11:12:13 -04:00
|
|
|
|
|
|
|
|
Knot DNS benefits from its multi-threaded and mostly lock-free
|
|
|
|
|
implementation which allows it to scale well on SMP systems and
|
|
|
|
|
operate non-stop even when adding or removing zones.
|
|
|
|
|
|
2021-07-28 03:02:56 -04:00
|
|
|
The server itself is accompanied by several utilities for general DNS
|
2021-11-24 06:55:31 -05:00
|
|
|
operations or for maintaining the server.
|
2021-07-28 03:02:56 -04:00
|
|
|
|
2017-06-19 07:31:55 -04:00
|
|
|
For more info and downloads see `www.knot-dns.cz <https://www.knot-dns.cz>`_.
|
|
|
|
|
|
2014-04-15 11:12:13 -04:00
|
|
|
Knot DNS features
|
2015-03-02 08:25:51 -05:00
|
|
|
=================
|
2014-04-15 11:12:13 -04:00
|
|
|
|
2015-03-02 08:25:51 -05:00
|
|
|
DNS features:
|
2014-04-15 11:12:13 -04:00
|
|
|
|
2021-01-18 07:33:45 -05:00
|
|
|
* Primary and secondary server operation
|
2025-02-04 07:12:38 -05:00
|
|
|
* Internet (IN) and limited Chaos (CH) classes
|
|
|
|
|
* DNS extension (EDNS0, EDE, EXPIRE, PADDING, ZONEVERSION)
|
2024-06-21 02:46:31 -04:00
|
|
|
* UDP, TCP, TLS 1.3, and QUIC protocols
|
2021-07-28 03:02:56 -04:00
|
|
|
* Zone catalog generation and interpretation
|
2020-09-04 05:09:23 -04:00
|
|
|
* Minimal responses
|
2017-06-19 07:31:55 -04:00
|
|
|
* Dynamic zone updates
|
|
|
|
|
* DNSSEC with NSEC and NSEC3
|
2021-07-28 03:02:56 -04:00
|
|
|
* ZONEMD generation and validation
|
2017-06-19 07:31:55 -04:00
|
|
|
* Transaction signature using TSIG
|
|
|
|
|
* Full and incremental zone transfers (AXFR, IXFR)
|
|
|
|
|
* Name server identification using NSID or Chaos TXT records
|
|
|
|
|
* Resource record types A, NS, CNAME, SOA, PTR, HINFO, MINFO, MX,
|
|
|
|
|
TXT, RP, AFSDB, RT, KEY, AAAA, LOC, SRV, NAPTR, KX, CERT, DNAME, APL, DS,
|
2019-02-21 10:41:45 -05:00
|
|
|
SSHFP, IPSECKEY, RRSIG, NSEC, DNSKEY, DHCID, NSEC3, NSEC3PARAM, TLSA, SMIMEA,
|
2021-06-20 15:26:26 -04:00
|
|
|
CDS, CDNSKEY, OPENPGPKEY, CSYNC, ZONEMD, SVCB, HTTPS, SPF, NID, L32, L64, LP,
|
2025-12-11 08:17:30 -05:00
|
|
|
DSYNC, EUI48, EUI64, URI, CAA, RESINFO, WALLET, and Unknown
|
2014-04-15 11:12:13 -04:00
|
|
|
|
|
|
|
|
Server features:
|
|
|
|
|
|
2015-04-22 10:14:48 -04:00
|
|
|
* IPv4 and IPv6 support
|
2017-06-19 07:31:55 -04:00
|
|
|
* Semantic zone checks
|
|
|
|
|
* Server control interface
|
|
|
|
|
* Zone journal storage
|
|
|
|
|
* Persistent zone event timers
|
|
|
|
|
* YAML-based or database-based configuration
|
|
|
|
|
* Query processing modules with dynamic loading
|
|
|
|
|
* On-the-fly zone management and server reconfiguration
|
2020-09-04 05:09:23 -04:00
|
|
|
* Multithreaded DNSSEC zone signing and zone validation
|
2020-10-27 13:58:28 -04:00
|
|
|
* Automatic DNSSEC key management
|
2020-09-04 05:09:23 -04:00
|
|
|
* Zone data backup and restore
|
2025-09-09 09:54:56 -04:00
|
|
|
* Database zone backend
|
2019-02-21 10:41:45 -05:00
|
|
|
* Offline KSK operation
|
|
|
|
|
* PKCS #11 interface
|
2014-04-15 11:12:13 -04:00
|
|
|
|
2017-06-19 07:31:55 -04:00
|
|
|
Remarkable module extensions:
|
2014-04-15 11:12:13 -04:00
|
|
|
|
2017-06-19 07:31:55 -04:00
|
|
|
* Response rate limiting
|
|
|
|
|
* Forward and reverse records synthesis
|
|
|
|
|
* DNS request traffic statistics
|
2021-07-28 03:02:56 -04:00
|
|
|
* Efficient DNS traffic logging interface
|
2017-06-19 07:31:55 -04:00
|
|
|
* Dnstap traffic logging
|
|
|
|
|
* Online DNSSEC signing
|
2019-02-21 10:41:45 -05:00
|
|
|
* GeoIP response tailoring supporting ECS and DNSSEC
|
2014-04-15 11:12:13 -04:00
|
|
|
|
2019-07-15 08:01:03 -04:00
|
|
|
Remarkable supported networking features:
|
|
|
|
|
|
2024-06-21 02:46:31 -04:00
|
|
|
* Opportunistic, strict, and mutual authentication profiles over TLS 1.3 or QUIC
|
2023-04-21 02:22:03 -04:00
|
|
|
* High-performance UDP, TCP, and QUIC through AF_XDP processing (on Linux 4.18+)
|
2019-09-19 10:14:54 -04:00
|
|
|
* SO_REUSEPORT (on Linux) or SO_REUSEPORT_LB (on FreeBSD 12.0+) on UDP and by choice on TCP
|
2019-07-15 08:01:03 -04:00
|
|
|
* Binding to non-local addresses (IP_FREEBIND on Linux, IP_BINDANY/IPV6_BINDANY on FreeBSD)
|
|
|
|
|
* Ignoring PMTU information for IPv4/UDP via IP_PMTUDISC_OMIT
|
|
|
|
|
|
2014-04-25 11:52:32 -04:00
|
|
|
License
|
2015-03-02 08:25:51 -05:00
|
|
|
=======
|
2014-04-25 11:52:32 -04:00
|
|
|
|
2025-03-24 03:33:19 -04:00
|
|
|
Knot DNS is licensed under the
|
|
|
|
|
`GNU General Public License v2.0 or later <https://spdx.org/licenses/GPL-2.0-or-later.html>`_.
|
|
|
|
|
The full text of the license is available in the ``COPYING`` file distributed
|
|
|
|
|
with the source code.
|
