mapping client networks to work with ECS
George (Yorgos) Thessalonikefs
george at nlnetlabs.nl
Mon Feb 20 10:28:07 UTC 2023
Hi Antonio,
This is not possible.
If you control the clients you can have them include an ECS option with
the desired network and Unbound will use that.
My next bet would be NATing so that Unbound sees the fake client IP.
Best regards,
-- Yorgos
On 17/02/2023 18:18, Antonio Prado via Unbound-users wrote:
> hi,
>
> is there a way to instruct unbound to send a client subnet X where the
> real client IP belongs to subnet Y?
>
> consider this example:
>
> client 172.21.22.23/24
> ||
> unbound 192.0.2.1
> ecs 203.0.113.0/24
> ||
> auth ns
>
> or
>
> client 172.31.32.33/24
> ||
> unbound 192.0.2.1
> ecs 233.252.0.0/24
> ||
> auth ns
>
> thank you
> --
> antonio
More information about the Unbound-users
mailing list