From 8fc2f00ffbf17a19a4ff2f905b6dcadded724fda Mon Sep 17 00:00:00 2001 From: Frank Denis Date: Thu, 26 Mar 2020 18:33:39 +0100 Subject: [PATCH] Probably older than version 1.4.0 --- ChangeLog | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/ChangeLog b/ChangeLog index ec23dec0..af4b3cd4 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,11 +1,12 @@ * Version 2.0.42 - - Version 1.4.0 of the dnsdist load balancer (presumably used by -quad9, cleanbrowsing, qualityology, freetsa.org, ffmuc.net, + - The current versions of the `dnsdist` load balancer (presumably used +by quad9, cleanbrowsing, qualityology, freetsa.org, ffmuc.net, opennic-bongobow, sth-dnscrypt-se, ams-dnscrypt-nl and more) is preventing queries over 1500 bytes from being received over UDP. Temporary workarounds have been introduced to improve reliability with these resolvers for regular DNSCrypt. Unfortunately, anonymized -DNS cannot be reliable until dnsdist is updated on these servers. +DNS cannot be reliable until the issue is fixed server-side. `dnsdist` +authors are aware of it and are working on a fix. - New option in the `[anonymized_dns]` section: `skip_incompatible`, to ignore resolvers incompatible with Anonymized DNS instead of using them without a relay.