Different reply for different source addresses
Юрий Иванов
format_hub at outlook.com
Mon Dec 30 18:44:17 UTC 2019
Hello,
I have very strange question.
I have DNS name srv1.example.com with private IP 10.0.0.1, and the same name with public routable address.
Generally srv1.example.com has two A records with private and public addresses. Such records will exists on cache only.
Can I reply to specific networks (lets say 1.0.0.0/8) with public routable address but for my private networks (i.e. 10/8 or 192.168/16) with private IP 10.0.0.1?
I think two approaches can be used for this:
1. Drop/Accept with the help of firewall filter (looks like it can be low performance)
2. Create Public IP on NSD server and overide this FQDN with private IP on Unbound
But maybe unbound has such built-in features for this or another better way.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.nlnetlabs.nl/pipermail/unbound-users/attachments/20191230/eb2b11e7/attachment.htm>
More information about the Unbound-users
mailing list