search

m3047 / rear_view_rpz

Turn your recursive DNS (BIND) server into a network investigation enabler with DnsTap and RPZ. Make PTR recs great again!
Apache License 2.0
12 stars 2 forks source link

Implement IP6 #3

Closed m3047 closed 2 years ago

m3047 commented 2 years ago

I'm seeing some IP6 addresses showing up under .in-addr.arpa in the zone (instead of .ip6.arpa), and they're not formatted correctly in any case. So yes, I know, and you're not crazy. Short term I'll implement a switch which turns that off (maybe in the future it will allow choosing 4, 6 or both).

My "real" network isn't IP6 (some of the internal stuff is, but it's not very interesting), so if you've got skin in this game feel free to ping me at morris.rear-view.fix-ip6.o6i@m3047.net and introduce yourself.

m3047 commented 2 years ago

IPv6 is disabled at cc1176e. Garbage found in the zone is logged by default, but you can disable this.

If you have garbage in your zone file because of this issue, you will have to remove it manually.

m3047 commented 2 years ago

IPv6 is now implemented, and the default is to include both 4 and 6.

If you want just one or the other, you need to set ADDRESS_CLASSES appropriately in configuration.py.

Since my upstream is IPv4 only, it's not going to get much road dirt here. I'm counting on you to report issues that you may find.