20 Dub
2018
20 Dub
'18
12:52
Hi,
you can talk to Unix socket, please see example here:
http://knot-resolver.readthedocs.io/en/latest/daemon.html#scaling-out
It accepts the same syntax as in configuration file, i.e.
http://knot-resolver.readthedocs.io/en/latest/modules.html#query-policies
applies here as well.
You might want to use `policy.del` to get rid of previous policy rule,
please see
http://knot-resolver.readthedocs.io/en/latest/modules.html#policy-examples
... and let us know if you need any help.
Petr Špaček @ CZ.NIC
On 20.4.2018 12:33, Martin Sehnoutka wrote:
Hi,
I would like to run Knot Resolver with DNS-over-TLS on my laptop, but I
need to configure 'policy.FORWARD' whenever I connect to our corporate
network. The information about new connection is provided by the Network
Manager, that is not a problem, but then I need to configure the
resolver somehow. I was thinking about creating a new configuration file
and simply restarting the server, but it fails with "Start request
repeated too quickly".
Is there a way to add/remove policy rules "on the fly"?
The HTTP/2 module seems like a good candidate for doing this. Can this
module be used to accomplish this task?
Best regards,
Martin Sehnoutka
PS: If there is anyone using dnssec-trigger, this would be similar, but
less complicated.