DNSMASQ_WARN reducing DNS packet size for nameserver 1.1.1.1 to 1280

Please follow the below template, it will help us to help you!

If you are Experiencing issues with a Pi-hole install that has non-standard elements (e.g you are using nginx instead of lighttpd, or there is some other aspect of your install that is customised) - please use the Community Help category.

Expected Behaviour:

No errors in system

Actual Behaviour:

DNSMASQ_WARN reducing DNS packet size for nameserver 1.1.1.1 to 1280

Debug Token:

fXHutdLa

Those kind of errors have received elevated visibility with recent Pi-hole releases, although they'd always been properly logged on occurence before (likely without anyone noticing them).

See the discussion from DNSMASQ_WARN reducing DNS packet size - #9 by DL6ER, which lead to us updating our documentation on dnsmasq warnings, specifically:

:warning: reducing DNS packet size for nameserver ADDRESS to SAFE_PKTSZ

When receiving answers from upstream only with a smaller maximum DNS packet size, dnsmasq warns about this and remembers this decision per server for some time (defaulting to 60 seconds).

If you see this message continuously, you are affected by some unusual truncation on the path from your Pi-hole to the configured upstream server. You can get rid of the warning by adding a config file like /etc/dnsmasq.d/99-edns.conf and adding

edns-packet-max=1232

After running pihole restartdns your Pi-hole will not even try larger packet sizes (the default is 4096). Check out our unbound guide for a comment about the particular value of 1232 .

2 Likes

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.