[Dnsmasq-discuss] nxdomain option of dnsmasq
Bill Yuan
bycn82 at gmail.com
Sat Mar 16 12:17:00 GMT 2013
hi i met this problem,
here is my dnsmasq.conf
HA1#cat /etc/dnsmasq.conf
domain-needed
log-queries
bogus-nxdomain=1.2.3.4
and the hosts file
HA1#cat /etc/hosts
127.0.0.1 localhost localhost.singtec.com
192.168.255.1 test.com
1.1.1.1 localdns
then i nslookup test.com, it can get the 192.168.255.1, But when i
quering a non-existent domain, the result is "*** Unkown can't find
xxxx, Query refused
I thought it should return a 1.2.3.4 for the nxdomain !!
On Sat, Mar 16, 2013 at 6:58 PM, Bill Yuan <bycn82 at gmail.com> wrote:
> hi all
> as the emails i sent before, i want to have a dns server which can
> hijack the traffic when user key-in the non-existent domain, so
> finally i found there is an bogus-nxdomain option in dnsmasq,
>
> here is the explaination of this option in the man page,
> -B, --bogus-nxdomain=<ipaddr>
> Transform replies which contain the IP address given into "No such
> domain" replies. This is intended to counteract a devious move made by
> Verisign in September 2003 when they started returning the address of
> an advertising web page in response to queries for unregistered names,
> instead of the correct NXDOMAIN response. This option tells dnsmasq to
> fake the correct response when it sees this behaviour. As at Sept 2003
> the IP address being returned by Verisign is 64.94.110.11
>
> but i still get an timeout when I request an non-existent domain
>
>
> can someone please help to check this option,whether this option is
> what I want ?
>
>
> thanks very much,
>
> bill82
More information about the Dnsmasq-discuss
mailing list