nsd users - Mar 2013 - Controlling the rate of SLIP (truncated responses during RRL)?

I do not find an option in NSD 3.2.15 nsd.conf to control the rate of
SLIP responses (truncated responses because the request was
rate-limited). BIND's RRL patch has it.

Apparently, NSD, by default, sends a lot of SLIP responses. Yes, they
are small but I would like to have less of them.

On Thu, Mar 21, 2013 at 10:55:35AM +0100,
 Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote 
 a message of 10 lines which said:
> I do not find an option in NSD 3.2.15 nsd.conf to control the rate
> of SLIP responses (truncated responses because the request was
> rate-limited).
Even when reading the source code. The rate of 1/2 seems hardcoded.

	/* discard half the packets, randomly */
	if((random() & 0x1)) {

Also, I wouldn't mind having an option to control the length of the
rate-limited prefixes (it's also hardcoded).

	/* we take a /24 for IPv4 and /64 for IPv6 */
...
		return ((struct sockaddr_in*)&query->addr)->
			sin_addr.s_addr & htonl(0xffffff00);

On Thu, Mar 21, 2013 at 10:55:35AM +0100,
 Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote 
 a message of 10 lines which said:
> I do not find an option in NSD 3.2.15 nsd.conf to control the rate of
> SLIP responses (truncated responses because the request was
> rate-limited). BIND's RRL patch has it.
> 
> Apparently, NSD, by default, sends a lot of SLIP responses. Yes, they
> are small but I would like to have less of them.
Here is a proposed patch (the variable rrl-slip has the same behavior
as the BIND variable) against branch 3.2.

Tested and seems to work.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: nsd-rrl-slip.patch
Type: text/x-diff
Size: 7923 bytes
Desc: not available
URL:
<http://lists.nlnetlabs.nl/pipermail/nsd-users/attachments/20130410/570ee159/attachment.bin>