Knot Resolver¶
Knot Resolver is a minimalistic implementation of a caching validating DNS resolver. Modular architecture keeps the core tiny and efficient, and it provides a state-machine like API for extensions.
- Daemon
- Modules
- Static hints
- Statistics collector
- Query policies
- Views and ACLs
- Prefetching records
- HTTP/2 services
- DNS-over-HTTP (DoH)
- DNS Application Firewall
- Rebinding protection
- Graphite module
- Etcd module
- DNS64
- Renumber
- DNSSEC validation failure logging
- Name Server Identifier (NSID)
- Workarounds
- Dnstap
- Signaling Trust Anchor Knowledge in DNSSEC
- Sentinel for Detecting Trusted Root Keys
- Priming module
- System time skew detector
- Detect discontinuous jumps in the system time
- Root on loopback (RFC 7706)
- Cache prefilling
- Serve stale
- EDNS keepalive
- Experimental DNS-over-TLS Auto-discovery