blechschmidt
commented
3 months ago By default, massdns will not verify incoming IP addresses. This option enables source IP verification of incoming packets. That is, it only accepts replies from the resolver addresses specified in the resolvers file.
For example, if you send DNS requests to 1.1.1.1, massdns would by default accept answers from 8.8.8.8. With this option, it no longer does.
msasad
Can someone with certain knowledge please explain What does this flag do? I tried to search on the Internet but couldn't find any good answers.