11 Pro
2025
11 Pro
'25
12:09
Hi,
All my FreeBSD pri and sec's have custom kernels, that (also) enable TFO.
But in knot.conf it's chronically "tmp" commented out,
as enabling it inflicts fatal errors (in direct facing connections).
It seems to conflict especially when tcp-reuseport is on.
Would love to see it's potential, but was never working for me.
--
With kind regards,
Met vriendelijke groet,
Mit freundlichen Grüß,
Leo Vandewoestijne
<***(a)dns.company>
<www.dns.company>
On Tue, 09 Dec 2025, Daniel Salzman via knot-dns-users wrote:
Hello Knot DNS users,
Knot DNS supports TCP Fast Open (when configured) in both the server and client roles for
several years.
However, we have not observed any performance or other improvements from this technology
so far. Since
removing it would simplify the code, I'm considering dropping the support for it. Is
there anyone who would
miss TFO in Knot DNS?
For better XFR efficiency between Knots,
https://www.knot-dns.cz/docs/latest/singlehtml/index.html#remote-pool-limit
works much better.
Thanks,
Daniel