diff options
| author | Chris Poole <github@hackernet.co.uk> | 2021-10-19 18:08:40 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-10-19 18:08:40 +0100 |
| commit | 4ef2f73b26cffa320ab9724b4bb742aee327e859 (patch) | |
| tree | d205ebde69c0a055bdc48b4b64546f6816f61649 | |
| parent | 8e0c2e42fbc58c2bf49dabee50b8c9ea0c5622ec (diff) | |
| download | vyos-documentation-4ef2f73b26cffa320ab9724b4bb742aee327e859.tar.gz vyos-documentation-4ef2f73b26cffa320ab9724b4bb742aee327e859.zip | |
Update dns.rst with forwarding source-address
Add documentation for "set service dns forwarding source-address <address>"
We needed this setting in a split-horizon DNS down a VPN tunnel to force the source address to a an IP that can be routed back instead of the VPN tunnel endpoint, but can only find it described in the command line currently.
| -rw-r--r-- | docs/configuration/service/dns.rst | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/docs/configuration/service/dns.rst b/docs/configuration/service/dns.rst index 7db0e6e2..24e9b26e 100644 --- a/docs/configuration/service/dns.rst +++ b/docs/configuration/service/dns.rst @@ -111,6 +111,11 @@ avoid being tracked by the provider of your upstream DNS server. The local IPv4 or IPv6 addresses to bind the DNS forwarder to. The forwarder will listen on this address for incoming connections. +.. cfgcmd:: set service dns forwarding source-address <address> + + The local IPv4 or IPv6 addresses to use as a source address for sending queries. + The forwarder will send forwarded outbound DNS requests from this address. + .. cfgcmd:: set service dns forwarding no-serve-rfc1918 This makes the server authoritatively not aware of: 10.in-addr.arpa, |