subject:"\[Dnsmasq\-discuss\] Confused about simple subdomain authoritative server \(re\: home network\)"

Re: [Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

2023-11-23 Thread Petr Menšík

It depends what interface you use for auth-server in second parameter. 
You have not shared if you have internal and external interfaces, so I 
would guess enp2s0f0 is internal interface. If you want authoritative 
answers served to internal clients, use just 
|auth-server=server.home.mydomain.com 

|

||auth-server with interface specified is intended to be used on router 
WAN interface facing to potentially hostile network. Therefore it does 
not do recursive service, but just authoritative on it. That is by 
design, but may not be what you wanted.


For trusted internal network, specify just allowed interface(s).

interface=lo
interface=enp20f0
|auth-server=server.home.mydomain.com
||auth-zone=home.mydomain.com 
,192.168.1.0/24

||host-record=server.home.mydomain.com,192.168.1.50|

||

Cheers,
Petr|
|

On 06. 11. 23 14:22, John Klimek wrote:
Here is the dnsmasq.conf I'm using.  It seems to return authoritative 
responses for home.mydomain.com  but if I 
query anything else it returns REFUSED:


|log-queries no-resolv server=8.8.4.4 server=8.8.8.8 
auth-server=server.home.mydomain.com 
,enp2s0f0 auth-zone=home.mydomain.com 
,192.168.1.0/24 
host-record=server.home.mydomain.com,192.168.1.50 
|



--
Petr Menšík
Software Engineer, RHEL
Red Hat,http://www.redhat.com/
PGP: DFCF908DB7C87E8E529925BC4931CA5B6C9FC5CB
___
Dnsmasq-discuss mailing list
Dnsmasq-discuss@lists.thekelleys.org.uk
https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss

Re: [Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

2023-11-06 Thread John Klimek

Thanks but unfortunately I commented it out and it didn't help.

On Mon, Nov 6, 2023 at 9:32 AM  wrote:

> On 11/6/23 8:22 AM, John Klimek wrote:
> > Here is the dnsmasq.conf I'm using.  It seems to return authoritative
> responses
> > for home.mydomain.com  but if I query
> anything else it
> > returns REFUSED:
>
> i think no-resolv might cause that...
>
>
> --
>   NOTE: No off-list assistance is given without prior approval.
> *Please keep mailing list traffic on the list unless*
> *a signed and pre-paid contract is in effect with us.*
>
> ___
> Dnsmasq-discuss mailing list
> Dnsmasq-discuss@lists.thekelleys.org.uk
> https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss
>
___
Dnsmasq-discuss mailing list
Dnsmasq-discuss@lists.thekelleys.org.uk
https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss

Re: [Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

2023-11-06 Thread Matus UHLAR - fantomas


On 06.11.23 08:22, John Klimek wrote:

Here is the dnsmasq.conf I'm using.  It seems to return authoritative
responses for home.mydomain.com but if I query anything else it returns
REFUSED:

log-queries

no-resolv
server=8.8.4.4
server=8.8.8.8


do you have DNS connectivity to these IP addresses?
Don't you get different nameserver ips e.g. via dhcp or ppp?


auth-server=server.home.mydomain.com,enp2s0f0
auth-zone=home.mydomain.com,192.168.1.0/24
host-record=server.home.mydomain.com,192.168.1.50


On 06.11.23 09:12, wkitt...@gmail.com wrote:

On 11/6/23 8:22 AM, John Klimek wrote:
Here is the dnsmasq.conf I'm using.  It seems to return 
authoritative responses for home.mydomain.com 
 but if I query anything else it returns 
REFUSED:


i think no-resolv might cause that...


no-resolv tells dnsmasq not to read /etc/resolv.conf but use servers 
specified in dnsmasq.conf, in this case 8.8.4.4 and 8.8.8.8


it could cause troubles if e.g. provider blocks access to these servers.

--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I intend to live forever - so far so good.

___
Dnsmasq-discuss mailing list
Dnsmasq-discuss@lists.thekelleys.org.uk
https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss

Re: [Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

2023-11-06 Thread wkitty42


On 11/6/23 8:22 AM, John Klimek wrote:
Here is the dnsmasq.conf I'm using.  It seems to return authoritative responses 
for home.mydomain.com  but if I query anything else it 
returns REFUSED:


i think no-resolv might cause that...


--
 NOTE: No off-list assistance is given without prior approval.
   *Please keep mailing list traffic on the list unless*
   *a signed and pre-paid contract is in effect with us.*

___
Dnsmasq-discuss mailing list
Dnsmasq-discuss@lists.thekelleys.org.uk
https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss

Re: [Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

2023-11-06 Thread John Klimek

Here is the dnsmasq.conf I'm using.  It seems to return authoritative
responses for home.mydomain.com but if I query anything else it returns
REFUSED:

log-queries

no-resolv

server=8.8.4.4
server=8.8.8.8

auth-server=server.home.mydomain.com,enp2s0f0
auth-zone=home.mydomain.com,192.168.1.0/24
host-record=server.home.mydomain.com,192.168.1.50
___
Dnsmasq-discuss mailing list
Dnsmasq-discuss@lists.thekelleys.org.uk
https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss

[Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

2023-11-06 Thread John Klimek

I'm trying to use dnsmasq as the primary dns server for my private network
and I'd like dnsmasq to return authoritative responses for *.
home.mydomain.com but also recursively resolve all other queries.

For example, dnsmasq is running on my Linux (Debian) server at 192.168.1.50.

I'd like to point my clients to this server and if '
service.home.mydomain.com' is queried then I'd like an authoritative
response.  However, if 'www.google.com' is queried then it should forward
it to a public server and then return the response.

Is this possible?  Can somebody provide a sample setup?
___
Dnsmasq-discuss mailing list
Dnsmasq-discuss@lists.thekelleys.org.uk
https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss

Re: [Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

Re: [Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

Re: [Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

Re: [Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

Re: [Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

[Dnsmasq-discuss] Confused about simple subdomain authoritative server (re: home network)

6 matches

Site Navigation

Mail list logo

Footer information