[nsd-users] Multi-homed server UDP packets wrong interface

[Robert Blayzor]

We have hosts that are multi-homed on IPv6 networks and having an issue 
with NSD sourcing out UDP reply packets via a different interface/IP 
than the query was received on.

This obviously will cause issues with clients behind firewalls, etc. 
Looks as though NSD just sources the packet on the egress interface 
based on the host routing table. So the reply is coming back from a 
different IP address.

With TCP this isn't an issue....


Coincidentally Unbound has a option to toggle this behavior....


         # enable this feature to copy the source address of queries to 
reply.
         # Socket options are not supported on all platforms. experimental.
         interface-automatic: yes



Is there such a knob in NSD? If not, can there be?

-- 
inoc.net!rblayzor
XMPP: rblayzor.AT.inoc.net
PGP:  https://pgp.inoc.net/rblayzor/