[Dnsmasq-discuss] Confused about simple subdomain authoritative server
Geert Stappers
stappers at stappers.nl
Mon Nov 6 18:00:59 UTC 2023
On Mon, Nov 06, 2023 at 04:17:05PM +0100, Matus UHLAR - fantomas wrote:
> On 06.11.23 08:22, John Klimek wrote:
> > Here is the dnsmasq.conf I'm using. It seems to return authoritative
> > responses for home.mydomain.com but if I query anything else it returns
> > REFUSED:
> >
> > log-queries
> >
> > no-resolv
> > server=8.8.4.4
> > server=8.8.8.8
>
> do you have DNS connectivity to these IP addresses?
Check it by `dig @8.8.4.4 dnsmasq.org` or `host dnsmasq.org 8.8.4.4`
> Don't you get different nameserver ips e.g. via dhcp or ppp?
Or on written instructions from your Internet Service Provider.
> > auth-server=server.home.mydomain.com,enp2s0f0
> > auth-zone=home.mydomain.com,192.168.1.0/24
> > host-record=server.home.mydomain.com,192.168.1.50
>
> On 06.11.23 09:12, wkitty42 at gmail.com wrote:
> > On 11/6/23 8:22 AM, John Klimek wrote:
> > > Here is the dnsmasq.conf I'm using. It seems to return
> > > authoritative responses for home.mydomain.com
> > > <http://home.mydomain.com> but if I query anything else it returns
> > > REFUSED:
> >
> > i think no-resolv might cause that...
>
> no-resolv tells dnsmasq not to read /etc/resolv.conf but use servers
> specified in dnsmasq.conf, in this case 8.8.4.4 and 8.8.8.8
>
> it could cause troubles if e.g. provider blocks access to these servers.
Way too strict firewall rules on the dnsmasq host have the same effect.
Groeten
Geert Stappers
--
Silence is hard to parse
More information about the Dnsmasq-discuss
mailing list