TrueCloudLab/coredns
16
0
Fork 2
Code Issues Pull requests 3 Projects Releases Packages Wiki Activity Actions
coredns/middleware/reverse
History
Miek Gieben 3654361be2 core: small cleanup (#877) 
Add some docs about normalize.Host and normalize.Name. They are used
correctly in the middleware even though they are somewhat confusing,
esp when you copy from ServerBlockKeys in your middleware.
2017-08-10 05:30:18 -07:00
..
network.go all: gometalinter (#843) 2017-08-06 05:54:24 -07:00
network_test.go Reverse middleware change ipseparator (#753) 2017-06-25 01:59:33 -07:00
README.md middleware/reverse: small doc cleanup 2017-07-13 10:12:10 +00:00
reverse.go Fix import path github.com/miekg/coredns -> github.com/coredns/coredns (#547) 2017-02-22 06:51:47 +00:00
reverse_test.go add wildcard parameter to allow resolving multiple name to the same IP (#755) 2017-07-10 22:49:24 -06:00
setup.go core: small cleanup (#877) 2017-08-10 05:30:18 -07:00
setup_test.go add wildcard parameter to allow resolving multiple name to the same IP (#755) 2017-07-10 22:49:24 -06:00

README.md

reverse

The reverse middleware allows CoreDNS to respond dynamically to a PTR request and the related A/AAAA request.

Syntax

reverse NETWORK... {
    hostname TEMPLATE
    [ttl TTL]
    [fallthrough]
    [wildcard]
  • NETWORK one or more CIDR formatted networks to respond on.
  • hostname injects the IP and zone to a template for the hostname. Defaults to "ip-{IP}.{zone[1]}". See below for template.
  • ttl defaults to 60
  • fallthrough if zone matches and no record can be generated, pass request to the next middleware.
  • wildcard allows matches to catch all subdomains as well.

Template Syntax

The template for the hostname is used for generating the PTR for a reverse lookup and matching the forward lookup back to an IP.

{ip}

The {ip} symbol is required to make reverse work. For IPv4 lookups the IP is directly extracted With IPv6 lookups the ":" is removed, and any zero ranged are expanded, e.g., "ffff::ffff" results in "ffff000000000000000000000000ffff"

{zone[i]}

The {zone[i]} symbol is optional and can be replaced by a fixed (zone) string. The zone will be matched by the zones listed in this configuration stanza. i needs to be replaced with the index of the configured listener zones, starting with 1.

Examples

arpa compute.internal {
    # proxy unmatched requests
    proxy . 8.8.8.8

    # answer requests for IPs in this network
    # PTR 1.0.32.10.in-addr.arpa. 3600 ip-10.0.32.1.compute.internal.
    # A ip-10.0.32.1.compute.internal. 3600 10.0.32.1
    # v6 is also possible
    # PTR 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.d.f.ip6.arpa. 3600 ip-fd010000000000000000000000000001.compute.internal.
    # AAAA ip-fd010000000000000000000000000001.compute.internal. 3600 fd01::1
    reverse 10.32.0.0/16 fd01::/16 {
        # template of the ip injection to hostname, zone resolved to compute.internal.
        hostname ip-{ip}.{zone[2]}

        ttl 3600

        # Forward unanswered or unmatched requests to proxy
        # without this flag, requesting A/AAAA records on compute.internal. will end here.
        fallthrough
    }
}

32.10.in-addr.arpa.arpa arpa.company.org {

    reverse 10.32.0.0/16 {
        # template of the ip injection to hostname, zone resolved to arpa.company.org.
        hostname "ip-{ip}.v4.{zone[2]}"

        ttl 3600

        # fallthrough is not required, v4.arpa.company.org. will be only answered here
    }

    # cidr closer to the ip wins, so we can overwrite the "default"
    reverse 10.32.2.0/24 {
        # its also possible to set fix domain suffix
        hostname ip-{ip}.fix.arpa.company.org.

        ttl 3600
    }
}