From a147b9358d3ffe64711963514f1d856cb2f9461c Mon Sep 17 00:00:00 2001 From: Paul Wouters Date: Thu, 7 Jul 2016 19:22:06 +0300 Subject: [PATCH] - Fix upper port range to 60999 because that's what selinux allows --- unbound.conf | 2 +- unbound.spec | 5 ++++- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/unbound.conf b/unbound.conf index 313096c..4c92332 100644 --- a/unbound.conf +++ b/unbound.conf @@ -77,7 +77,7 @@ server: # permit unbound to use this port number or port range for # making outgoing queries, using an outgoing interface. # Only ephemeral ports are allowed by SElinux - outgoing-port-permit: 32768-65535 + outgoing-port-permit: 32768-60999 # deny unbound the use this of port number or port range for # making outgoing queries, using an outgoing interface. diff --git a/unbound.spec b/unbound.spec index ceee6c9..4e68d6a 100644 --- a/unbound.spec +++ b/unbound.spec @@ -21,7 +21,7 @@ Summary: Validating, recursive, and caching DNS(SEC) resolver Name: unbound Version: 1.5.9 -Release: 2%{?extra_version:.%{extra_version}}%{?dist} +Release: 3%{?extra_version:.%{extra_version}}%{?dist} License: BSD Url: http://www.nlnetlabs.nl/unbound/ Source: http://www.unbound.net/downloads/%{name}-%{version}%{?extra_version}.tar.gz @@ -430,6 +430,9 @@ popd %changelog +* Thu Jul 07 2016 Paul Wouters - 1.5.9-3 +- Fix upper port range to 60999 because that's what selinux allows + * Thu Jun 16 2016 Paul Wouters - 1.5.9-2 - Patch for allowing more queries before failure (needed for query minimalization)