[Dnsmasq-discuss] Support for adding CNAME query result to IPSET

Simon Kelley simon at thekelleys.org.uk
Mon Sep 3 23:39:28 BST 2018


Are you sure? It seems to work for me.



srk at holly:~/dnsmasq/dnsmasq$ src/dnsmasq -d -p 10000 --log-queries
--ipset=/www.comcast.com/test
dnsmasq: started, version 2.80test4 cachesize 150
dnsmasq: compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN
DHCP DHCPv6 no-Lua TFTP no-conntrack ipset auth no-DNSSEC loop-detect
inotify dumpfile
dnsmasq: reading /etc/resolv.conf
dnsmasq: using nameserver 127.0.1.1#53
dnsmasq: read /etc/hosts - 8 addresses
dnsmasq: query[A] www.comcast.com from 127.0.0.1
dnsmasq: forwarded www.comcast.com to 127.0.1.1
dnsmasq: reply www.comcast.com is <CNAME>
dnsmasq: reply www.comcast.com.edgekey.net is <CNAME>
dnsmasq: ipset add test 2.22.99.93 e523.dscb.akamaiedge.net
dnsmasq: reply e523.dscb.akamaiedge.net is 2.22.99.93

Cheers,

Simon.


On 26/08/18 08:48, esinpublic-2012 at yahoo.com.hk wrote:
> Hi, 
> 
> When running with the ipset configuration, e.g.
> 
> ipset=/example.com/whitelist
> 
> 
> If the query result is a CNAME of differnet domain e.g.
> 
> example.com.                                     
>  300  IN    CNAME  d123456789abcdefg.cloudfront.net.
> d123456789abcdefg.cloudfront.net.    60   
> IN    A            123.123.123.123
> 
> The IP address 123.123.123.123 would not be added to the IPSET. May I
> ask if it is possible to have dnsmasq to add the final reolved ip into
> the ipset?
> 
> Thank you!
> 
> 
> _______________________________________________
> Dnsmasq-discuss mailing list
> Dnsmasq-discuss at lists.thekelleys.org.uk
> http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
> 




More information about the Dnsmasq-discuss mailing list