In OpenStack, a dedicated isolated (through network namespaces) port
is created to bind dnsmasq.
My problem is if I create a public network/subnet (like a network
routed on internet or another WAN) with Neutron and activate the IPAM
(DHCP DNS cache) service on it, other network routed with that
I found a recent thread [1] that already treats that problem [2].
Sorry for the noise and going to propose a patch for Neutron.
[1]
http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2013q4/thread.html#7707
[2] http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2013q4/007721.html
That's how you end up with an open DNS resolver, and unwittingly DDOS
other machines.
On 11/28/2013 10:52 PM, Don Muller wrote:
Wouldn't it be better to not define dnsmasq as the DNS resolver for the subnets
you don't want handle.
Sent from my iPad
Don Muller
On Nov 28, 2013, at 12:26 PM,
set up on the client subnets and
also at the routers and firewalls.
Don
-Original Message-
From: Brian Rak [mailto:b...@gameservers.com]
Sent: Friday, November 29, 2013 9:45 AM
To: Don Muller; dnsmasq-discuss@lists.thekelleys.org.uk
Subject: Re: [Dnsmasq-discuss] Limit DNS queries
on the client subnets and also at the routers and firewalls.
Don
-Original Message-
From: Brian Rak [mailto:b...@gameservers.com]
Sent: Friday, November 29, 2013 9:45 AM
To: Don Muller; dnsmasq-discuss@lists.thekelleys.org.uk
Subject: Re: [Dnsmasq-discuss] Limit DNS queries to the local
at the routers and firewalls.
Don
-Original Message-
From: Brian Rak [mailto:b...@gameservers.com]
Sent: Friday, November 29, 2013 9:45 AM
To: Don Muller; dnsmasq-discuss@lists.thekelleys.org.uk
Subject: Re: [Dnsmasq-discuss] Limit DNS queries to the local subnet
clients
That's how you end up
DNS queries to the local subnet
clients
That's how you end up with an open DNS resolver, and unwittingly DDOS
other machines.
On 11/28/2013 10:52 PM, Don Muller wrote:
Wouldn't it be better to not define dnsmasq as the DNS resolver for
the subnets you don't want handle.
Sent from my iPad
-Original Message-
From: Brian Rak [mailto:b...@gameservers.com]
Sent: Friday, November 29, 2013 9:45 AM
To: Don Muller; dnsmasq-discuss@lists.thekelleys.org.uk
Subject: Re: [Dnsmasq-discuss] Limit DNS queries to the local
subnet
clients
That's how you end up with an open DNS resolver
Édouard Thuleau thul...@gmail.com wrote:
Nov 28 (1 day ago)
to dnsmasq-discuss
Hi,
I'm new with dnsmasq and I like to know if we can limit it to answer
DNS queries only to clients of the subnet served by dnsmasq or to a
defined subnet ?
Regards,
Édouard.
Is it not as simple as
Wouldn't it be better to not define dnsmasq as the DNS resolver for the subnets
you don't want handle.
Sent from my iPad
Don Muller
On Nov 28, 2013, at 12:26 PM, Édouard Thuleau thul...@gmail.com wrote:
Hi,
I'm new with dnsmasq and I like to know if we can limit it to answer
DNS
10 matches
Mail list logo