[Dnsmasq-discuss] Support for adding CNAME query result to IPSET
Simon Kelley
simon at thekelleys.org.uk
Mon Sep 3 23:39:28 BST 2018
Are you sure? It seems to work for me.
srk at holly:~/dnsmasq/dnsmasq$ src/dnsmasq -d -p 10000 --log-queries
--ipset=/www.comcast.com/test
dnsmasq: started, version 2.80test4 cachesize 150
dnsmasq: compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN
DHCP DHCPv6 no-Lua TFTP no-conntrack ipset auth no-DNSSEC loop-detect
inotify dumpfile
dnsmasq: reading /etc/resolv.conf
dnsmasq: using nameserver 127.0.1.1#53
dnsmasq: read /etc/hosts - 8 addresses
dnsmasq: query[A] www.comcast.com from 127.0.0.1
dnsmasq: forwarded www.comcast.com to 127.0.1.1
dnsmasq: reply www.comcast.com is <CNAME>
dnsmasq: reply www.comcast.com.edgekey.net is <CNAME>
dnsmasq: ipset add test 2.22.99.93 e523.dscb.akamaiedge.net
dnsmasq: reply e523.dscb.akamaiedge.net is 2.22.99.93
Cheers,
Simon.
On 26/08/18 08:48, esinpublic-2012 at yahoo.com.hk wrote:
> Hi,
>
> When running with the ipset configuration, e.g.
>
> ipset=/example.com/whitelist
>
>
> If the query result is a CNAME of differnet domain e.g.
>
> example.com.
> 300 IN CNAME d123456789abcdefg.cloudfront.net.
> d123456789abcdefg.cloudfront.net. 60
> IN A 123.123.123.123
>
> The IP address 123.123.123.123 would not be added to the IPSET. May I
> ask if it is possible to have dnsmasq to add the final reolved ip into
> the ipset?
>
> Thank you!
>
>
> _______________________________________________
> Dnsmasq-discuss mailing list
> Dnsmasq-discuss at lists.thekelleys.org.uk
> http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
>
More information about the Dnsmasq-discuss
mailing list