[Dnsmasq-discuss] Subnet specifications for authoritative dns
/dev/rob0
rob0 at gmx.co.uk
Wed May 29 12:02:46 BST 2013
On Wed, May 29, 2013 at 11:13:47AM +0200,
Toke Høiland-Jørgensen wrote:
> Simon Kelley <simon at thekelleys.org.uk> writes:
>
> > In your case, to delegate 192.168.1.0-127 or 192.168.1.128-255
> > isn't possible using this scheme. There is a workaround involving
> > CNAMES, but it's complicated for a simple-to-setup scheme, which
> > is what dnsmasq is trying to provide.
>
> Right, well basically what I'm trying to achieve is for dnsmasq to
> still provide the (reverse) DNS service for the whole /24 subnet
> internally, but to filter out the addresses in the upper /25 and
> not answer those in queries on the authoritative interface (and
> exclude them from zone transfer also). It's not critically
> important, it just irks me to provide random people on the guest
> network with global DNS entries in my namespace, even if it's only
> for RFC1918 addresses... :)
Then perhaps your simple solution is a little bit of network
restructuring to replace your /24 with a /23 and your /25 with a /24?
RFC1918 gives us lots of room; stretch out and enjoy some of it. :)
--
http://rob0.nodns4.us/ -- system administration and consulting
Offlist GMX mail is seen only if "/dev/rob0" is in the Subject:
More information about the Dnsmasq-discuss
mailing list