Reducing DNS packet size for nameserver 1.1.1.1 to 1232

chenks · August 2, 2022, 12:51pm

Hi

all of sudden, over the past few days i've started seeing these in the diagnosis logs

Warning in `dnsmasq` core:
reducing DNS packet size for nameserver 1.1.1.1 to 1232
reducing DNS packet size for nameserver 1.0.0.1 to 1232

i use Cloudflare (DNSSEC) on IPv4 (no IPv6 enabled) with DNSSEC enabled.

now, whilst it is said that these are just warnings and not errors, it seems strange that they should only just start appearing after months of having none.

Docker Tag [2021.12.1]
Pi-hole [v5.11.4]
FTL [v5.16.1]
Web Interface [v5.13]

jfb · August 2, 2022, 1:41pm

Did you read the documentation that is linked below the warning?

chenks · August 2, 2022, 1:57pm

yes, it says to add

edns-packet-max=1232

to

/etc/dnsmasq.d/99-edns.conf

however, previous threads have suggested that acutally isn't necessarily a good thing to do.

i'm more interested as to why it has suddently started happening.

jfb · August 2, 2022, 1:57pm

You are occasionally sending packets larger than 1232.

chenks · August 2, 2022, 2:11pm

why all of a sudden when up until a few days ago i wasn't?
nothing has changed at my end in terms of config on any network related device.

jfb · August 2, 2022, 2:13pm

Packet sizes vary normally. Now you have hit a larger size than the upstream DNS server will accept. It's nothing to worry about, as long as your queries are being answered.

system · August 23, 2022, 8:04pm

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.