[Dnsmasq-discuss] Returning SOA for local domains?

Maxim Khitrov max at mxcrypt.com
Thu Feb 4 15:48:56 GMT 2016


When you configure a domain as local, meaning that dnsmasq will never
forward queries within that domain, there is no way to configure a
negative cache TTL value since there is no SOA record. As a result, I
frequently run into a problem where I try to ping/access a
non-existent DHCP lease (not acquired yet, forgot to reload dnsmasq,
whatever the reason) and the negative response gets cached locally
using some default TTL, which is much longer than I'd like it to be.
So even after the lease is acquired, I have to either wait several
minutes for the TTL to expire or manually flush the local cache.

Would it make sense to allow domains that are configured as local to
have a SOA record, with the negative cache TTL defaulting to the value
of --local-ttl? A --local-soa option could be added to enable and
control this explicitly.

I've thought about using the built-in authoritative server for this,
but the --auth-server option does not allow me to specify a
non-standard port, so I can't have it listen on 127.0.0.1:54, for
example. I could add another loopback IP, but this is now getting far
too complicated just to get a SOA record returned.

Thoughts?

-Max



More information about the Dnsmasq-discuss mailing list