Authoritative DNS- server PowerDNS Authoritative Server 4.4 , designed to organize the delivery of DNS zones. According to data of the project developers, PowerDNS Authoritative Server serves about 30% of the total number of domains in Europe (if we consider only domains with DNSSEC signatures , then 90%). The project code is distributed under the GPLv2 license.
PowerDNS Authoritative Server provides the ability to store information about domains in various databases, including MySQL, PostgreSQL, SQLite3, Oracle, and Microsoft SQL Server, as well as LDAP and plain text files in BIND format. The response can be additionally filtered (for example, to filter out spam) or redirected by connecting your own handlers in Lua, Java, Perl, Python, Ruby, C and C ++. Among the features, funds are also allocated for remote statistics collection, including via SNMP or through the Web API (an http server is built in for statistics and management), an instant restart, a built-in engine for connecting handlers in the Lua language, the ability to load balance taking into account the geographic location of the client .
Highlights innovations :
- Added the default configuration parameter consistent-backends , allowing up to 30% faster performance when using backends with high latencies such as SQL. When enabled, PowerDNS assumes that any domain is served by only one backend, which allows “ANY” requests to be sent instead of specifying the exact type, which return all record types for the specified name at once and put them in the cache.
- Discontinued support the GSS-TSIG key exchange mechanism, which was disabled by default and required a rebuild with the “–enable-experimental-gss-tsig” option to activate. The removal was caused by vulnerabilities in the GSS-TSIG implementation, which potentially contains other security issues.
- LMDB storage backend announced ubiquitous and now supports long records.
- Added support for SVCB and HTTPS record types.
- Significantly improved transaction handler and HTTP API.
- Implemented export of metrics to Prometheus.