435:
116:
24:
231:
to achieve very fast loading of the zones at the startup. It is also able to add and remove zones on the fly by changing the configuration file and reloading the server using the 'knotc' utility.
300:
216:. It is implemented as a multi-threaded daemon, using a number of programming techniques and data structures to make the server very fast, notably
741:
736:
404:
New in 3.3.0: full DNS over QUIC (using both XDP and operating system TCP/IP-stack), bidirectional XFR over QUIC, multi-signer operation mode.
440:
306:
New in 2.3.0: DNSSEC signing configured in server configuration, automatic NSEC3 resalting, zone operations over server control interface,
303:(RFC 6844) resource record types, interactive mode for 'knotc', new control interface for the server including simple Python bindings.
448:
321:
314:
279:
23:
353:
383:
91:
65:
186:
416:
379:
375:
371:
307:
247:
360:
731:
349:
New in 2.8.0: Offline-KSK, multithreaded DNSSEC signing, extended ACL for DDNS, zone update speed-up.
205:
183:
478:
363:
under Linux, catalog zones support, continuous DNSSEC validation, kzonesign and kxdpgun utilities,
138:
343:
213:
193:
189:
324:
based KASP database, KSK rollover, dynamic modules, zone freeze/thaw, zone contents in journal.
235:
272:
217:
150:
126:
522:
491:
271:
New in 1.5.0: query modules with two new modules: "Automatic forward/reverse records" and
115:
634:
364:
687:
676:
665:
654:
621:
610:
599:
588:
577:
566:
555:
544:
533:
261:(replaces zone compilation) and several client utilities (kdig, khost and knsupdate).
725:
420:
332:
408:
299:
New in 2.2.0: Response Rate
Limiting white listing, support for URI (RFC 7553) and
278:
New in 1.6.0: persistent timers for slave zones (expire, refresh, and flush) using
338:
New in 2.7.0: Performance improvement, new module for DNS Cookies, new module for
367:
support in kdig, deterministic ECDSA support, on-line backup of persistent data.
317:
based journal, new statistics module, automatic deletion of retired DNSSEC keys.
412:
285:
New in 2.0.0: new YAML-based configuration, and new DNSSEC implementation using
251:
155:
430:
221:
143:
31:
327:
New in 2.6.0: On-slave DNSSEC signing, automatic DNSSEC algorithm rollover,
131:
397:
New in 3.2.0: full DNS over TCP using XDP (including transfers), DNS over
370:
New in 3.1.0: basic DNS over TCP using XDP, routing-aware XDP processing,
100:
204:
domain registry. The purpose of this project is to supply an alternative
212:
operators to increase overall security, stability and resiliency of the
293:
711:
511:
467:
419:, bidirectional XFR over TLS, automatic DNSSEC revalidation, refined
391:
286:
265:
238:
mode in Linux, which can improve response performance significantly.
197:
36:
387:
339:
328:
258:
228:
468:
Response rate benchmark of several OSS authoritative name servers
716:
398:
209:
201:
208:
implementation of an authoritative DNS server suitable for
196:. It was created from scratch and is actively developed by
704:
234:
Since version 3.0.0, Knot DNS supports a high performance
166:
161:
149:
137:
125:
90:
64:
42:
30:
352:New in 2.9.0: Significant zone update speed-up,
401:in the XDP mode, DNSSEC multi-signer support.
8:
359:New in 3.0.0: High performance XDP mode for
16:
114:
22:
15:
492:"DNS response rate speedup by using XDP"
460:
227:Knot DNS uses a zone parser written in
356:optimizations, configuration cleanup.
296:interface, and online DNSSEC signing.
292:New in 2.1.0: dynamic configuration,
7:
441:Free and open-source software portal
254:, and a new remote control utility.
71:3.4.0 / September 2, 2024
14:
449:Comparison of DNS server software
382:support, zone catalog evolution,
257:New in 1.3.0: new zone parser in
433:
268:signing of the managed zones.
1:
742:DNS server software for Linux
737:Free network-related software
494:. Presentation at DNS OARC 32
633:Peltan, Libor (2020-09-09).
490:Peltan, Libor (2020-02-08).
479:Knot DNS memory requirements
374:generation and validation,
758:
512:Knot DNS 3.0 Benchmarking
86:
60:
21:
264:New in 1.4.0: automatic
220:or a special kind of a
637:. Blog of CZ.NIC staff
313:New in 2.4.0: Unified
248:Response Rate Limiting
48:; 12 years ago
46:December 12, 2011
712:DNS server benchmarks
386:error (EDE) support,
73:; 11 days ago
635:"Knot DNS 3.0 News"
407:New in 3.4.0: full
331:algorithm support,
18:
214:Domain Name System
194:Domain Name System
187:authoritative-only
177:
176:
749:
708:
707:
705:Official website
690:
685:
679:
674:
668:
663:
657:
652:
646:
645:
643:
642:
630:
624:
619:
613:
608:
602:
597:
591:
586:
580:
575:
569:
564:
558:
553:
547:
542:
536:
531:
525:
520:
514:
509:
503:
502:
500:
499:
487:
481:
476:
470:
465:
443:
438:
437:
436:
218:Read-copy-update
173:
170:
168:
127:Operating system
118:
113:
110:
108:
106:
104:
102:
81:
79:
74:
56:
54:
49:
26:
19:
757:
756:
752:
751:
750:
748:
747:
746:
722:
721:
703:
702:
699:
694:
693:
686:
682:
675:
671:
664:
660:
653:
649:
640:
638:
632:
631:
627:
620:
616:
609:
605:
598:
594:
587:
583:
576:
572:
565:
561:
554:
550:
543:
539:
532:
528:
521:
517:
510:
506:
497:
495:
489:
488:
484:
477:
473:
466:
462:
457:
439:
434:
432:
429:
244:
165:
121:
99:
82:
77:
75:
72:
52:
50:
47:
43:Initial release
12:
11:
5:
755:
753:
745:
744:
739:
734:
724:
723:
720:
719:
714:
709:
698:
697:External links
695:
692:
691:
688:Knot DNS 3.4.0
680:
677:Knot DNS 3.3.0
669:
666:Knot DNS 3.2.0
658:
655:Knot DNS 3.1.0
647:
625:
622:Knot DNS 3.0.0
614:
611:Knot DNS 2.9.0
603:
600:Knot DNS 2.8.0
592:
589:Knot DNS 2.7.0
581:
578:Knot DNS 2.6.0
570:
567:Knot DNS 2.5.0
559:
556:Knot DNS 2.4.0
548:
545:Knot DNS 2.3.0
537:
534:Knot DNS 2.2.0
526:
523:Knot DNS 2.1.0
515:
504:
482:
471:
459:
458:
456:
453:
452:
451:
445:
444:
428:
425:
415:over QUIC and
342:, support for
320:New in 2.5.0:
246:New in 1.2.0:
243:
240:
175:
174:
163:
159:
158:
153:
147:
146:
141:
135:
134:
129:
123:
122:
120:
119:
96:
94:
88:
87:
84:
83:
70:
68:
66:Stable release
62:
61:
58:
57:
44:
40:
39:
34:
28:
27:
13:
10:
9:
6:
4:
3:
2:
754:
743:
740:
738:
735:
733:
730:
729:
727:
718:
717:Knot Resolver
715:
713:
710:
706:
701:
700:
696:
689:
684:
681:
678:
673:
670:
667:
662:
659:
656:
651:
648:
636:
629:
626:
623:
618:
615:
612:
607:
604:
601:
596:
593:
590:
585:
582:
579:
574:
571:
568:
563:
560:
557:
552:
549:
546:
541:
538:
535:
530:
527:
524:
519:
516:
513:
508:
505:
493:
486:
483:
480:
475:
472:
469:
464:
461:
454:
450:
447:
446:
442:
431:
426:
424:
422:
418:
414:
410:
405:
402:
400:
395:
393:
389:
385:
381:
377:
373:
368:
366:
362:
357:
355:
350:
347:
345:
341:
336:
334:
333:TCP Fast Open
330:
325:
323:
318:
316:
311:
309:
304:
302:
297:
295:
290:
288:
283:
281:
276:
274:
269:
267:
262:
260:
255:
253:
249:
241:
239:
237:
232:
230:
225:
223:
219:
215:
211:
207:
203:
199:
195:
191:
188:
185:
181:
172:
164:
160:
157:
154:
152:
148:
145:
142:
140:
136:
133:
130:
128:
124:
117:
112:
98:
97:
95:
93:
89:
85:
69:
67:
63:
59:
45:
41:
38:
35:
33:
29:
25:
20:
732:DNS software
683:
672:
661:
650:
639:. Retrieved
628:
617:
606:
595:
584:
573:
562:
551:
540:
529:
518:
507:
496:. Retrieved
485:
474:
463:
409:DNS over TLS
406:
403:
396:
369:
358:
351:
348:
337:
326:
319:
312:
305:
298:
291:
284:
277:
270:
263:
256:
245:
233:
226:
179:
178:
32:Developer(s)
252:Dynamic DNS
206:open-source
184:open-source
156:GPL license
726:Categories
641:2020-09-09
498:2020-09-09
455:References
222:radix tree
144:DNS server
92:Repository
78:2024-09-02
53:2011-12-12
394:support.
310:in kdig.
242:Changelog
169:.knot-dns
132:Unix-like
109:/knot-dns
427:See also
423:module.
294:PKCS #11
192:for the
180:Knot DNS
17:Knot DNS
329:Ed25519
162:Website
151:License
76: (
51: (
392:kqueue
372:ZONEMD
287:GnuTLS
273:dnstap
266:DNSSEC
200:, the
198:CZ.NIC
190:server
182:is an
101:gitlab
37:CZ.NIC
388:epoll
380:HTTPS
340:GeoIP
259:Ragel
229:Ragel
107:/knot
413:DDNS
399:QUIC
384:EDNS
376:SVCB
322:LMDB
315:LMDB
280:LMDB
139:Type
111:.git
103:.nic
421:RRL
417:TLS
365:DoH
361:UDP
354:TCP
344:ECS
308:TLS
301:CAA
236:XDP
210:TLD
202:.CZ
171:.cz
167:www
105:.cz
728::
411:,
346:.
335:.
289:.
282:.
275:.
250:,
224:.
644:.
501:.
390:/
378:/
80:)
55:)
Text is available under the Creative Commons Attribution-ShareAlike License. Additional terms may apply.
