[Dnsmasq-discuss] Mixed Private and Public upstream lookups

Joseph Ghobrial jghobrial at uh.edu
Mon Oct 27 14:20:27 GMT 2008


Hello all, I have the following setup.

Firewalled Private network 192.168.0.0/16 with dnsmasq serving this  
network
External networks 172.16.0.0/16 172.21.0.0/16
And an external routable class C network

I would like to resolve the 172.16.0.0/16 and 172.21.0.0/16 addresses,  
but not allow DNS queries for 192.168.0.0/16 from the 192.168.0.0/16  
to go anywhere but dnsmasq. My upstream DNS servers are in the  
routable class C and resolve the 172's.

Here's my dnsmasq.conf
domain-needed
bogus-priv
#(Please note [DNS IP ADDRESS HERE] is a stand in for the actual IP  
address for the purpose of this e-mail)
server=/16.172.in-addr-arpa/[DNS IP ADDRESS HERE]
server=/21.172.in-addr-arpa/[DNS IP ADDRESS HERE]
interface=eth0
no-hosts
addn-hosts=/etc/dnsmasq.hosts
cache-size=250
local-ttl=60

I would like to disable the bogus-priv since that helps resolve the  
172's but I see the 192.168. non-entered dnsmasq.hosts entries get  
queried on the external DNS servers. I've seen that overriding bogus- 
priv has not happened in the past nor does it look like it will happen  
at least according to previous posts (this may have changed in  
subsequent e-mails).

I'm running dnsmasq-2.35-1.el4.rf.

I could probably just enter all of the subnet into dnsmasq.hosts as a  
potential solution, but that is not ideal. Any help would be  
appreciated.

Thanks,
Joseph





More information about the Dnsmasq-discuss mailing list