diff options
| author | Christian Breunig <christian@breunig.cc> | 2024-02-01 20:45:16 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2024-02-01 20:45:16 +0100 |
| commit | a93491acfca90ac910a235d03ca8e93830c98c12 (patch) | |
| tree | 56ac5a02de9b39c303d0e92ea31a78104d2716c6 /interface-definitions | |
| parent | b026961edd6b732f4c57ff0c68099930bf6162e3 (diff) | |
| parent | 112376a4ccb96ceee647a4cba5c4f131597b0ea4 (diff) | |
| download | vyos-1x-a93491acfca90ac910a235d03ca8e93830c98c12.tar.gz vyos-1x-a93491acfca90ac910a235d03ca8e93830c98c12.zip | |
Merge pull request #2903 from HollyGurza/T5687
dns forwarding: T5687: Implement ECS settings for PowerDNS recursor
Diffstat (limited to 'interface-definitions')
| -rw-r--r-- | interface-definitions/service_dns_forwarding.xml.in | 57 |
1 files changed, 57 insertions, 0 deletions
diff --git a/interface-definitions/service_dns_forwarding.xml.in b/interface-definitions/service_dns_forwarding.xml.in index 0f8863438..a54618e82 100644 --- a/interface-definitions/service_dns_forwarding.xml.in +++ b/interface-definitions/service_dns_forwarding.xml.in @@ -735,6 +735,63 @@ </constraint> </properties> </leafNode> + <node name="options"> + <properties> + <help>DNS server options</help> + </properties> + <children> + <leafNode name="ecs-add-for"> + <properties> + <help>Client netmask for which EDNS Client Subnet will be added</help> + <valueHelp> + <format>ipv4net</format> + <description>IPv4 prefix to match</description> + </valueHelp> + <valueHelp> + <format>!ipv4net</format> + <description>Match everything except the specified IPv4 prefix</description> + </valueHelp> + <valueHelp> + <format>ipv6net</format> + <description>IPv6 prefix to match</description> + </valueHelp> + <valueHelp> + <format>!ipv6net</format> + <description>Match everything except the specified IPv6 prefix</description> + </valueHelp> + <constraint> + <validator name="ipv4-prefix"/> + <validator name="ipv4-prefix-exclude"/> + <validator name="ipv6-prefix"/> + <validator name="ipv6-prefix-exclude"/> + </constraint> + <multi/> + </properties> + </leafNode> + <leafNode name="ecs-ipv4-bits"> + <properties> + <help>Number of bits of IPv4 address to pass for EDNS Client Subnet</help> + <valueHelp> + <format>u32:0-32</format> + <description>Number of bits of IPv4 address</description> + </valueHelp> + <constraint> + <validator name="numeric" argument="--range 0-32"/> + </constraint> + </properties> + </leafNode> + <leafNode name="edns-subnet-allow-list"> + <properties> + <help>Netmask or domain that we should enable EDNS subnet for</help> + <valueHelp> + <format>txt</format> + <description>Netmask or domain</description> + </valueHelp> + <multi/> + </properties> + </leafNode> + </children> + </node> </children> </node> </children> |