Add forwarding for not-found domains

lazypower / DNS-Charm

DNS Charm

MIT License

7 stars 5 forks source link

Add forwarding for not-found domains #7

Closed lazypower closed 9 years ago

lazypower commented 10 years ago

Forwarding should be a configurable option for BIND deployments. If the nameserver is listed first in resolv.conf it will fail to push not-found entries to a remote service, since we occupy the first slot in most resolv.conf configurations - it makes sense to attempt to forward requests to the existing nameserver on the machine.

lazypower commented 9 years ago

This is tricky. If we configure the host to be an open relay, it effectively turns the BIND9 host into a DNS based DDOS server for other hosts in the DNS tree. This will need to be researched further before I feel comfortable opening the floodgates to this feature.

lazypower commented 9 years ago

This seems unnecessary, as forwarding DNS to external servers is a big hole that I don't want to get into. Someone can fork it and add the functionality, but the upstream charm will not carry this behavior out of the box.