[libvirt] [PATCH 0/2] tell dnsmasq not to forward PTR queries
Gene Czarcinski
gene at czarc.net
Tue Sep 11 17:25:27 UTC 2012
I would appreciate it if the libvirt developers who are attempting to
provide overall guidance to give some thought to the two patches.
I have done a bunch of testing and both patches work as intended ...
they only deal with the dns service provided by dnsmasq.
When dsnmasq is providing both dns and dhcp services, this makes sense.
But how about the situations where dnsmasq is only listening?
The earlier patches I submitted for not forwarding A, AAAA, or MX dns
queries because there was no way for an upstream dns server determining
what should be forwarded to the "Big Eye" Internet. [why isn't
"test.virt" as good a FQDN as anything else]
But, the same is not true for private network PTR queries ... dnsmasq
"bogus-priv" can indicate not to forward them. There is also some
discussion about implementing a similar capability for IPv6.
Anyway, here they are for your consideration.
Gene
On 09/11/2012 12:58 PM, gene at czarc.net wrote:
> From: Gene Czarcinski <gene at czarc.net>
>
> For networks which dnsmasq has "--listen-address" specified, add
> the command line parameter so that any dns PTR queries for those
> networks are not forwarded.
>
> There are separate patches for IPv4 and IPv6.
>
> Gene Czarcinski (2):
> IPV4 local=/....in-addr.arpa/
> IPv6 local=/...ip6.arpa/
>
> src/network/bridge_driver.c | 32 ++++++++++++++++++++++
> tests/networkxml2argvdata/isolated-network.argv | 1 +
> .../networkxml2argvdata/nat-network-dns-hosts.argv | 1 +
> .../nat-network-dns-srv-record-minimal.argv | 5 ++++
> .../nat-network-dns-srv-record.argv | 5 ++++
> .../nat-network-dns-txt-record.argv | 11 ++++++--
> tests/networkxml2argvdata/nat-network.argv | 18 ++++++++++--
> tests/networkxml2argvdata/nat-network.xml | 4 +++
> tests/networkxml2argvdata/netboot-network.argv | 1 +
> .../networkxml2argvdata/netboot-proxy-network.argv | 1 +
> tests/networkxml2argvdata/routed-network.argv | 3 +-
> 11 files changed, 76 insertions(+), 6 deletions(-)
>
More information about the libvir-list
mailing list