Re: boot ordering and resolvconf

To: debian-devel@lists.debian.org
Subject: Re: boot ordering and resolvconf
From: Roger Lynn <Roger@rilynn.me.uk>
Date: Sat, 06 Jul 2013 12:13:19 +0100
Message-id: <[🔎] fnalaa-qlq.ln1@silverstone.rilynn.me.uk>
In-reply-to: <[🔎] 20948.9448.430861.233800@chiark.greenend.org.uk>
References: <20130608110918.GA1482@alf.mars> <20918.158.894717.79183@chiark.greenend.org.uk> <[🔎] 20948.9448.430861.233800@chiark.greenend.org.uk>

On 03/07/13 14:30, Ian Jackson wrote:
> Ian Jackson writes ("Re: boot ordering and resolvconf"):
>>     4. Therefore in most installations there should be a local 
>>        proxy or cache.  It should use DHCP-provided, PPP-provided or
>>        similar, as a forwarder.  The local DNS provider address
>>        should be owned by whatever proxy or cache is installed.
> 
> Is there some reason not to use dnsmasq for this ?
> 
> To do this we would have to:
>   * install dnsmasq by default
>   * teach resolvconf to update dnsmasq's config rather than
>      resolv.conf (but apparently Ubuntu have done this work)
>   * make sure that the full-on DNS servers all conflict with
>     dnsmasq and listen on 127.0.0.1

Please don't make DNS servers conflict with each other. I have Dnsmasq,
Unbound and NSD all installed. Unbound provides recursive DNSSEC enabled
resolution for the local network, it forwards queries for the LAN domain to
an authoritative Dnsmasq DNS/DHCP servicer running on a different port and
NSD is running on an external interface serving an external domain. I don't
think this is an unreasonable configuration to want.

Thanks,

Roger

Reply to:

References:
- Re: boot ordering and resolvconf
  - From: Ian Jackson <ijackson@chiark.greenend.org.uk>

Prev by Date: Re: Plan to release a gplv3 compliant debian-based release
Next by Date: Re: Berkeley DB 6.0 license change to AGPLv3
Previous by thread: Re: getaddrinfo() return value chaos
Next by thread: Re: boot ordering and resolvconf
Index(es):
- Date
- Thread