diff options
author | David Wilson <david@letsgetdigital.ca> | 2019-09-26 21:57:19 -0400 |
---|---|---|
committer | GitHub <noreply@github.com> | 2019-09-26 21:57:19 -0400 |
commit | b8d95f97c7c2d60e9b356691298497271a95f0b1 (patch) | |
tree | e0192d71c21f69c98488a4f686b753f4de6fc636 /docs/services/dns-forwarding.rst | |
parent | a17c3876d63406d8c66efe5597ab89e155150f9a (diff) | |
download | vyos-documentation-b8d95f97c7c2d60e9b356691298497271a95f0b1.tar.gz vyos-documentation-b8d95f97c7c2d60e9b356691298497271a95f0b1.zip |
Added allow-from DNS forwarding settings
During my testing only the /0 and /32 network prefix lengths worked, specifying a /24 caused the DNS Service to not respond. I have added the /0 network to the above examples so the documentation exists for this required command and will submit a bug report on the issue.
Diffstat (limited to 'docs/services/dns-forwarding.rst')
-rw-r--r-- | docs/services/dns-forwarding.rst | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/docs/services/dns-forwarding.rst b/docs/services/dns-forwarding.rst index 067dacaf..4aaf6919 100644 --- a/docs/services/dns-forwarding.rst +++ b/docs/services/dns-forwarding.rst @@ -28,6 +28,12 @@ Setting a forwarding DNS server for a specific domain: .. code-block:: sh set service dns forwarding domain example.com server 192.0.2.1 + +Set which networks or clients are allowed to query the DNS Server. Allow from all: + +.. code-block:: sh + + set service dns forwarding allow-from 0.0.0.0/0 Example 1 ^^^^^^^^^ @@ -44,6 +50,7 @@ Router with two interfaces eth0 (WAN link) and eth1 (LAN). Split DNS for example set service dns forwarding name-server 8.8.8.8 set service dns forwarding name-server 8.8.4.4 set service dns forwarding listen-address 192.168.0.1 + set service dns forwarding allow-from 0.0.0.0/0 Example 2 ^^^^^^^^^ @@ -62,3 +69,4 @@ The IP addresses for the LAN interface are 192.168.0.1 and 2001:db8::1 set service dns forwarding name-server 2001:4860:4860::8844 set service dns forwarding listen-address 2001:db8::1 set service dns forwarding listen-address 192.168.0.1 + set service dns forwarding allow-from 0.0.0.0/0 |