[Dnsmasq-discuss] Subnet specifications for authoritative dns

/dev/rob0 rob0 at gmx.co.uk
Wed May 29 12:02:46 BST 2013


On Wed, May 29, 2013 at 11:13:47AM +0200,
   Toke Høiland-Jørgensen wrote:
> Simon Kelley <simon at thekelleys.org.uk> writes:
> 
> > In your case, to delegate 192.168.1.0-127 or 192.168.1.128-255 
> > isn't possible using this scheme. There is a workaround involving 
> > CNAMES, but it's complicated for a simple-to-setup scheme, which 
> > is what dnsmasq is trying to provide.
> 
> Right, well basically what I'm trying to achieve is for dnsmasq to 
> still provide the (reverse) DNS service for the whole /24 subnet 
> internally, but to filter out the addresses in the upper /25 and 
> not answer those in queries on the authoritative interface (and 
> exclude them from zone transfer also). It's not critically 
> important, it just irks me to provide random people on the guest 
> network with global DNS entries in my namespace, even if it's only 
> for RFC1918 addresses... :)

Then perhaps your simple solution is a little bit of network 
restructuring to replace your /24 with a /23 and your /25 with a /24? 
RFC1918 gives us lots of room; stretch out and enjoy some of it. :)
-- 
  http://rob0.nodns4.us/ -- system administration and consulting
  Offlist GMX mail is seen only if "/dev/rob0" is in the Subject:



More information about the Dnsmasq-discuss mailing list