[dnsmasq] Make additional dnsmasq options available in GUI #8440
Assignees
Comments
2 tasks
no? |
I did not realise this… Is this the equivalent of the dnsmasq ‘--server=‘ option as described in manpages? Also, can multiple entries of domain if so, then I guess Item (3) above is already implemented? |
|
Any way of testing this with a patch or any other way? |
|
I guess you could use it if you update to the latest development edition and then use:
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Important notices
Before you add a new report, we ask you kindly to acknowledge the following:
Is your feature request related to a problem? Please describe.
Earlier issue reported here: #8416
Describe the solution you like
Make the following 2 dnsmasq options available in the GUI under OPNsense > dnsmasq
These are options available in dnsmasq and explained in manpages here.
--add-mac=From dnsmasq manpage
--add-mac[=base64|text]
Add the MAC address of the requestor to DNS queries which are forwarded upstream. This may be used to DNS filtering by the upstream server.
--add-subnetFrom dnsmasq manpage
--add-subnet[[=[/]][,[/]]]
Add a subnet address to the DNS queries which are forwarded upstream. If an address is specified in the flag, it will be used, otherwise, the address of the requestor will be used. The amount of the address forwarded depends on the prefix length parameter: 32 (128 for IPv6) forwards the whole address, zero forwards none of it but still marks the request so that no upstream nameserver will add client address information either. The default is zero for both IPv4 and IPv6. For example, —add-subnet=32,128 will add the /32 and /128 subnets of the request or for IPv4 and IPv6, --add-subnet=24,96 will add the /24 and /96 subnets of the requestor for IPv4 and IPv6 requestors, respectively. --add-subnet=1.2.3.4/24 will add 1.2.3.0/24 for IPv4 requestors and ::/0 for IPv6 requestors. --add-subnet=1.2.3.4/24,1.2.3.4/24 will add 1.2.3.0/24 for both IPv4 and IPv6 requestors.
Why these features are required?
Way to implement
Dnsmasq settings GUI:
Make 2 additional checkboxes with text boxes (to add optional text)
add-mac,add-subnetDescribe the solution you like
Allow upstream dns servers to be defined with more granularity (e.g. port definitions, etc.)
These are options available in dnsmasq and explained in manpages here.
--server=From dnsmasq manpage
--server=[/[]/[domain/]][[#]][@][@[#]]
Specify upstream servers directly. Setting this flag does not suppress reading of /etc/resolv.conf, use --no-resolv to do that. If one or more optional domains are given, that server is used only for those domains and they are queried only using the specified server. This is intended for private nameservers: if you have a nameserver on your network which deals with names of the form xxx.internal.thekelleys.org.uk at 192.168.1.1 then giving the flag --server=/internal.thekelleys.org.uk/192.168.1.1 will send all queries for internal machines to that nameserver, everything else will go to the servers in /etc/resolv.conf. A non-standard port may be specified as part of the IP address using a # character. More than one --server flag is allowed, with repeated domain or ipaddr parts as required.
Why these features are required?
Way to implement
Two possibilities:
a) Under dnsmasq settings: Make available 3/4 additional text boxes that allow specifying a dns server along with additional parameters, e.g. 192.168.1.1#53035, 1.1.1.1#53, 192.168.99.99#53535
b) Change existing dns server settings in System>Settings>General and allow specifying extra parameters (e.g. 1.1.1.1#53, 192.168.1.1#53053, etc…)
The text was updated successfully, but these errors were encountered: