Today we released the first beta version of what will become PowerDNS DNSdist 2.1.0.
This new version brings new features and improvements since the first alpha:
-
OpenTelemetry: add flags field in TRACEPARENT EDNS option
-
Add prepend and append methods to Lua DNSName
-
Export DNS flags via ProtoBuf
-
Add actions, methods and FFI functions to unset a tag
-
Implement "allowed rcodes/total" ratio dynamic rule
-
Subnets excluded from dynamic rules should not count towards thresholds
-
Add a Lua callback to validate health-check responses
It also fixes several issues reported against the first alpha:
- Do not create dnsdist.yml in RPM system configuration
directory
- Only install dnsdist.yml-dist if yaml support was enabled (Holger Hoffstätte)
- Work around Quiche not dealing well with removed congestion algorithms
- Better handling of invalid Base64 content
- Fix build issues with ipcrypt2
- Correctly set Span ID to downstreams
- Fix invalid substr() use in the DNS overlay parser
- Don't start the NetworkListener thread in config check mode
- Meson: Add missing checks for TLS_client_method, gnutls_transport_set_fastopen
Compared to 2.0, 2.1 also brings the following new features:
-
OpenTelemetry tracing support has been added
-
Structured logging has been added
- A and AAAA records can now be shuffled in the packet cache (Karel Bilek)
- Lua parsers are now available for A, AAAA and CNAME records (Ensar Sarajčić)
- a Lua hook can now be invoked on server state changes (@pacnal)
Please be aware that DNSdist now looks by default for a configuration file named "dnsdist.yml" in the systemd configuration directory, instead of "dnsdist.conf". It will however fall back for a "dnsdist.conf" file if there is no "dnsdist.yml" file, so existing configurations should still work as expected.
Other notable changes are the removal of DNS over HTTPS support via the h2o library, meaning DNS over HTTPS is now only available via the nghttp2 library.
As this release introduces major changes, we invite everyone to test it as soon as possible to make sure that all existing use cases are still working properly, and that there is no performance degradation.
Please see the DNSdist website for the changelog and the current documentation.
Please send us all feedback and issues you might have via the mailing list, or in case of a bug, via GitHub.
The release tarball and its signature are available on the downloads website, and packages for several distributions are available from our repository.
