[knot-resolver-users] Re: Newbie questions regarding knot-resolver

Hello. On 09/03/2024 15.45, Michael Grimm via knot-resolver-users wrote: Yes, when cache fills up completely, it gets reset to empty.  So it is possible to run that way; you'll just temporarily get worse latency whenever the reset happens. I expect your DNS traffic isn't very diverse. That depends on your packaging and configuration.  Certainly not something for crontab.  Note that rotation of root keys has only happened once in the whole history so far.  It's a very slow and careful process. My preferred way is to use these as read-only files, updated by software updates.  But we also have code for automatic maintenance according to RFC 5011.  I think in the FreeBSD port it's configurable https://cgit.freebsd.org/ports/tree/dns/knot-resolver/Makefile?id=e8c9d591e… kresc was an experiment, incomplete and abandoned years ago.  I expect you could use something like echo 'tojson(stats.list())' | sudo socat - /var/run/knot-resolver/control/0 but usually people consume it by the prometheus format and then feed it to whatever they prefer (e.g. grafana). https://knot-resolver.readthedocs.io/en/stable/modules-stats.html#prometheu… It is possible to change or add these control sockets.  It's just net.listen('path', nil, { kind = 'control' }) Defaults depend on your init scripts, e.g. with systemd it's typically not named by PID but by service name. Some of these aspects get improved in versions >= 6.0. Control of the GC and kresd processes is integrated inside, also stats aggregation and there's new kresctl command (and user config gets rewritten completely, from Lua to YAML).  But honestly we don't do any BSD ourselves, so I don't expect you want to package and try it at this point... --Vladimir