| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2019-08-25 | powerdns: T1524: support setting allow-from network | Christian Poessinger | |
| Netmasks (both IPv4 and IPv6) that are allowed to use the server. The default allows access only from RFC 1918 private IP addresses. Due to the aggressive nature of the internet these days, it is highly recommended to not open up the recursor for the entire internet. Questions from IP addresses not listed here are ignored and do not get an answer. https://docs.powerdns.com/recursor/settings.html#allow-from Imagine an ISP network with non RFC1918 IP adresses - they can't make use of PowerDNS recursor. As of now VyOS hat allow-from set to 0.0.0.0/0 and ::/0 which created an open resolver. If there is no allow-from statement a config-migrator will add the appropriate nodes to the configuration, resulting in: service { dns { forwarding { allow-from 0.0.0.0/0 allow-from ::/0 cache-size 0 ignore-hosts-file listen-address 192.0.2.1 } } } (cherry picked from commit dc0f641956d002fa8588ef8d1213791cf36e92f2) | |||
| 2019-07-21 | T1537: add missing help for 'set service dns' | Christian Poessinger | |
| (cherry picked from commit d99bf6a3a623433e743bb2d1d72e2ef3e0ab5057) | |||
| 2019-01-12 | T1041: make upstream DNS server optional | Christian Poessinger | |
| The name-server option under "service dns-forwarding" was never mandatory so users never needed to specify an upstream server. With the recent switch to PowerDNS recursor in VyOS 1.2.0 we will act as a full DNS recursor when there is no upstream DNS server configured. (cherry picked from commit 3c563b3ae8397da33a03c0429c17b97eb9625c5f) | |||
| 2018-12-09 | T1091: extend DNS forwarding/DNSSEC completion help text | Christian Poessinger | |
| 2018-12-09 | T1091: add DNS forwarding completion helpers for DNSSEC | Christian Poessinger | |
| 2018-10-17 | dns-forwarding: fix XML interface indenting | Christian Poessinger | |
| 2018-08-02 | T754: add DNSSEC to DNS forwarder | mb300sd | |
| 2018-06-08 | Stop using 'vyatta-interfaces.pl' in ned XML interface | Christian Poessinger | |
| 2018-05-23 | Small improvements to DNS forwarding help. | Daniil Baturin | |
| 2018-05-21 | T588: Configurable Negative TTL caching in forwarder | Christian Poessinger | |
| 2018-05-20 | T560: enable non-local bind in the defaults, add 'listen-address' option, ↵ | Daniil Baturin | |
| and add a deprecation warning for the listen-on option. | |||
| 2018-05-16 | T644: remove prefixing from all scripts and update environment variables ↵ | Daniil Baturin | |
| with VyOS paths. | |||
| 2018-05-16 | Use '_' instead of '-' for python scripts for test | Yuya Kusakabe | |
| 2018-05-14 | Some more valueless fixes. | Daniil Baturin | |
| 2018-05-14 | T602: replace the now-gone type attribute with proper use of constraints in ↵ | Daniil Baturin | |
| existing interface definitions. | |||
| 2018-04-15 | dns-forwarding: XML: fix indention | Christian Poessinger | |
| 2018-04-15 | dns-forwarding: add completion helper for dhcp | Christian Poessinger | |
| cpo@LR1# set service dns forwarding dhcp Possible completions: <text> Use nameservers received from DHCP server for specified interface eth0 eth1 lo | |||
| 2018-04-15 | T560: dns-forwarding: replace dnsmasq with pdns-recursor | Christian Poessinger | |
| 2018-04-15 | dns-forwarding: XML: Bugfix DNS domain forward configuration nodes | Christian Poessinger | |
| ... tagNode and leafNode types not configured. Set to 'txt' for tagNode and 'ipv4,ipv6' for leafNode | |||
| 2018-04-15 | Initial CLI interface support for XML DNS forwarder | Christian Poessinger | |
 |
index : vyos-1x.git | |
| VyOS command definitions, scripts, and utilities (mirror of https://github.com/marekm72/vyos-1x.git) |
| summaryrefslogtreecommitdiff |