diff options
| author | Viacheslav Hletenko <v.gletenko@vyos.io> | 2024-02-02 10:50:37 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2024-02-02 10:50:37 +0200 |
| commit | a092d507aefcf2c3588a7bcb7496c1c0cbfa7fe8 (patch) | |
| tree | 2a8b5001b812725b7de895d951643ffbe2145f57 /interface-definitions | |
| parent | 5a9a4d5d34ac04d498e62e2537f3618d88ba08f3 (diff) | |
| parent | 5802d14e08f87a6706e02c54133d1db9e7426b5b (diff) | |
| download | vyos-1x-a092d507aefcf2c3588a7bcb7496c1c0cbfa7fe8.tar.gz vyos-1x-a092d507aefcf2c3588a7bcb7496c1c0cbfa7fe8.zip | |
Merge pull request #2921 from vyos/mergify/bp/sagitta/pr-2903
dns forwarding: T5687: Implement ECS settings for PowerDNS recursor (backport #2903)
Diffstat (limited to 'interface-definitions')
| -rw-r--r-- | interface-definitions/service_dns_forwarding.xml.in | 57 |
1 files changed, 57 insertions, 0 deletions
diff --git a/interface-definitions/service_dns_forwarding.xml.in b/interface-definitions/service_dns_forwarding.xml.in index 0f8863438..a54618e82 100644 --- a/interface-definitions/service_dns_forwarding.xml.in +++ b/interface-definitions/service_dns_forwarding.xml.in @@ -735,6 +735,63 @@ </constraint> </properties> </leafNode> + <node name="options"> + <properties> + <help>DNS server options</help> + </properties> + <children> + <leafNode name="ecs-add-for"> + <properties> + <help>Client netmask for which EDNS Client Subnet will be added</help> + <valueHelp> + <format>ipv4net</format> + <description>IPv4 prefix to match</description> + </valueHelp> + <valueHelp> + <format>!ipv4net</format> + <description>Match everything except the specified IPv4 prefix</description> + </valueHelp> + <valueHelp> + <format>ipv6net</format> + <description>IPv6 prefix to match</description> + </valueHelp> + <valueHelp> + <format>!ipv6net</format> + <description>Match everything except the specified IPv6 prefix</description> + </valueHelp> + <constraint> + <validator name="ipv4-prefix"/> + <validator name="ipv4-prefix-exclude"/> + <validator name="ipv6-prefix"/> + <validator name="ipv6-prefix-exclude"/> + </constraint> + <multi/> + </properties> + </leafNode> + <leafNode name="ecs-ipv4-bits"> + <properties> + <help>Number of bits of IPv4 address to pass for EDNS Client Subnet</help> + <valueHelp> + <format>u32:0-32</format> + <description>Number of bits of IPv4 address</description> + </valueHelp> + <constraint> + <validator name="numeric" argument="--range 0-32"/> + </constraint> + </properties> + </leafNode> + <leafNode name="edns-subnet-allow-list"> + <properties> + <help>Netmask or domain that we should enable EDNS subnet for</help> + <valueHelp> + <format>txt</format> + <description>Netmask or domain</description> + </valueHelp> + <multi/> + </properties> + </leafNode> + </children> + </node> </children> </node> </children> |