Project

General

Profile

Actions
Copy link

Task #7496

closed

Create 2 new IPv6 only unbound based resolving DNS servers providing DNS64

Added by Nico Schottelius almost 5 years ago. Updated almost 5 years ago.

Status:
Closed
Priority:
High
Assignee:
Timothée Floure
Target version:
-
Start date:
12/17/2019
Due date:
% Done:

0%

Estimated time:
PM Check date:

Description

Background

We want VPN users or anyone to be able to select if they get NAT64 or not. Currently our bind decides based on the query source IP, whether to provide NAT64 or not and which prefix to use.

We want to have an alternative to that: DNS servers that always respond with NAT64 replies. So users can decide on their own if they want NAT64 or not.

Details

  • 2 VMs in place6
    • names: unbound1.place6.ungleich.ch, unbound2.place6.ungleich.ch
  • OS: Alpine
  • fully cdist configured
    • create a new type __ungleich_unbound that accepts as parameter:
      • upstream dns servers
      • dns64 prefix
  • Use the DNS64 prefix from place6
  • Configure unbound to lookup names via 2a0a:e5c0:2:1::5 and 2a0a:e5c0:2:1::6
    • Because unbound is IPv6 only, it is not able to query IPv4 only domains

documentation

Related issues 1 (0 open1 closed)

Blocks Open Infrastructure - Task #7560: Document DNS64 setup for VMsClosedTimothée Floure01/03/202001/17/2020

Actions
Actions
Copy link

Also available in: Atom PDF