ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity

"rndc fetchlimit" now also lists rate-limited domains

Browse Source 
"rndc fetchlimit" now also prints a list of domain names that are
currently rate-limited by "fetches-per-zone".

The "fetchlimit" system test has been updated to use this feature
to check that domain limits are applied correctly.
This commit is contained in:
Evan Hunt
2022-05-26 14:43:23 -07:00
parent 6175897478
commit 549cf0f3e6
6 changed files with 98 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
bin/tests/system/fetchlimit/tests.sh
View File

@@ -128,9 +128,10 @@ for try in 1 2 3 4 5; do
success=$((success+1))
grep "status: SERVFAIL" dig.out.ns3.$try > /dev/null 2>&1 && \
fail=$(($fail+1))
stat 30 50 || ret=1
stat 40 40 || ret=1
allowed=$($RNDCCMD fetchlimit | awk '/lamesub/ { print $6 }')
[ "${allowed:-0}" -eq 40 ] || ret=1
[ $ret -eq 1 ] && break
$RNDCCMD recursing 2>&1 | sed 's/^/ns3 /' | cat_i
sleep 1
done
echo_i "$success successful valid queries, $fail SERVFAIL"