<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">Am 12.12.2016 um 04:42 schrieb Chris:<br>
</div>
<blockquote
cite="mid:89846f7f-9407-3578-7f2a-41588db53df9@shthead.net"
type="cite">The part I am stuck on is it does not appear to be
possible to direct queries to certain IP's to certain pools. As an
example, my caching resolver IP's are 10.254.1.1, 10.254.1.2. I
use addLocal like this:
<br>
<br>
addLocal("10.254.1.1:53")
<br>
addLocal("10.254.1.2:53")
<br>
<br>
I want to direct all queries destined to those two IP's to the
dnscache pool. I want to do the same thing for the other
"addLocal" IP's as well, queries to the IP's for our own domains
should go to pool dnsauth-internal, queries for the IP's for
shared hosting should go to pool dnsauth-shared etc. Is this
possible with dnsdist? I can see how I can do it based on
filtering the domains but at the scale I am using this it isn't
really possible for me, the dnsauth-shared pool for example has
over 2M domains, dnsauth-dnshosting has over 4M domains and there
are very frequent changes to the domains for these.
</blockquote>
See <a class="moz-txt-link-freetext" href="http://dnsdist.org/README/">http://dnsdist.org/README/</a><br>
<br>
<meta http-equiv="content-type" content="text/html; charset=utf-8">
"NetmaskGroupRule(nmg, [<b>src-bool</b>]):<br>
matches traffic from the specified network range. Pass false as
second parameter to <b>match NetmaskGroup against destination
address instead of source address</b>"<br>
<br>
So this should work:<br>
<br>
dnscache_NMG = newNMG()<br>
dnscache_NMG:addMask("10.254.1.1/32")<br>
dnscache_NMG:addMask("10.254.1.2/32")<br>
<br>
newServer({address="10.254.1.10", pool="dnscache"})
<br>
newServer({address="10.254.1.11", pool="dnscache"}) <br>
<br>
addPoolRule(NetmaskGroupRule(dnscache_NMG , false), "dnscache")<br>
<br>
--<br>
Winfried<br>
<p><br>
</p>
</body>
</html>