Maintained by: NLnet Labs

[Unbound-users] DNS multiplexer?

Anand Buddhdev
Wed Aug 11 16:03:23 CEST 2010


On 11/08/2010 14:59, João Damas wrote:

> Does anyone know of any code that will let one to run Unbound and NSD
> on the same IP address and still use port 53 for listening on both?
> 
> Something like a DNS multiplexer front end, so that the recursive
> server and the authoritative server are kept separate but the
> front-end directs queries to one or the other (either based on the RD
> bit, a locally configured list of zones, e.g. from NSD config, or
> some other way). Something that is lightweight but avoids having to
> burn additional IP addresses.

Hi João,

I don't know of any existing multiplexer. However, you may want to look
at the libnetfilter_queue module for Linux, which allows one to pass
packets to a user-space application (perl with Net::DNS for example) for
inspection, and return a result to the kernel to let it decide what to
do with the packet.

http://www.netfilter.org/projects/libnetfilter_queue/index.html

Regards,

Anand Buddhdev,
DNS Services Manager, RIPE NCC