Line 1: |
Line 1: |
− | {{Template:Networking_rutos_manual_fw_disclosure | + | {{Template: Networking_rutos_manual_fw_disclosure |
− | | fw_version = {{{series}}}_R_00.02.05 | + | | fw_version ={{Template: Networking_rutos_manual_latest_fw |
− | | series = {{{series}}} | + | | series = {{{series}}} |
| + | | name = {{{name}}} |
| + | }} |
| }} | | }} |
| | | |
| + | __TOC__ |
| ==Summary== | | ==Summary== |
| | | |
Line 25: |
Line 28: |
| <th>Value</th> | | <th>Value</th> |
| <th>Description</th> | | <th>Description</th> |
− | </tr>
| |
− | <tr>
| |
− | <td>Domain required</td>
| |
− | <td>off | on; default: <b>on</b></td>
| |
− | <td>When enabled, stops forwarding queries for plain names, without dots or domain parts, to upstream nameservers. If the name is not known from <i>/etc/hosts</i> or DHCP then a "not found" answer is returned.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Local server</td>
| |
− | <td>string; default: <b>/lan/</b></td>
| |
− | <td>Local domain specification. Names matching this domain are never forwarded and are resolved from DHCP or hosts files (<i>/etc/hosts</i>) only.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Local domain</td>
| |
− | <td>domain name; default: <b>lan</b></td>
| |
− | <td>Local domain suffix appended to DHCP names and hosts file entries.</td>
| |
| </tr> | | </tr> |
| <tr> | | <tr> |
Line 55: |
Line 43: |
| <td>off | on; default: <b>on</b></td> | | <td>off | on; default: <b>on</b></td> |
| <td>Discards upstream RFC1918 responses. When enabled, the device will not resolve domain names for internal hosts.</td> | | <td>Discards upstream RFC1918 responses. When enabled, the device will not resolve domain names for internal hosts.</td> |
− | </tr>
| |
− | <tr>
| |
− | <td>Allow localhost</td>
| |
− | <td>off | on; default: <b>on</b></td>
| |
− | <td>Allow upstream responses in the 127.0.0.0/8 range. For example, for RBL services.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Domain whitelist</td>
| |
− | <td>domain name(s); default: <b>none</b></td>
| |
− | <td>List of domains to allow RFC1918 responses for.</td>
| |
| </tr> | | </tr> |
| <tr> | | <tr> |
Line 70: |
Line 48: |
| <td>off | on; default: <b>off</b></td> | | <td>off | on; default: <b>off</b></td> |
| <td>Limit DNS service to subnets and interfaces on which this device is serving as a DNS server.</td> | | <td>Limit DNS service to subnets and interfaces on which this device is serving as a DNS server.</td> |
− | </tr>
| |
− | <tr>
| |
− | <td>Non-wildcard</td>
| |
− | <td>off | on; default: <b>on</b></td>
| |
− | <td>Binds only to specific interfaces rather than wildcard address.</td>
| |
| </tr> | | </tr> |
| <tr> | | <tr> |
Line 85: |
Line 58: |
| <td>network interface(s); default: <b>none</b></td> | | <td>network interface(s); default: <b>none</b></td> |
| <td>Prevents listening for DNS queries on interfaces specified in this field. Leave empty to listen on all interfaces.</td> | | <td>Prevents listening for DNS queries on interfaces specified in this field. Leave empty to listen on all interfaces.</td> |
− | </tr>
| |
− | </table>
| |
− |
| |
− | ==Resolve and Hosts Files==
| |
− |
| |
− | The <b>Resolve and Hosts Files</b> section is used to configure the usage of these files:
| |
− |
| |
− | <ul>
| |
− | <li><b><i>/etc/hosts</i></b> - the hosts file; contains hostname/IP address combinations for DNS hostname resolution; it is always checked first;</li>
| |
− | <li><b><i>/etc/resolv.conf</i></b> - the resolve file; contains instructions that state the default search domain(s) that are used to complete a received query name into a fully qualified domain name (FQDN) when no domain suffix is provide.<br>Also contains a list of nameserver IP addresses for hostname resolution (DNS servers);</li>
| |
− | <li><b><i>/tmp/resolv.conf.auto</i></b> - alternative resolve file, used for public hostname resolutions. The path to this file can be changed from this section.</li>
| |
− | </ul>
| |
− |
| |
− | Refer to the table below for information on each configuration field.
| |
− |
| |
− | [[File:Networking_rutos_manual_dns_resolve_and_hosts_files.png|border|class=tlt-border]]
| |
− |
| |
− | <table class="nd-mantable">
| |
− | <tr>
| |
− | <th>Field</th>
| |
− | <th>Value</th>
| |
− | <th>Description</th>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Ignore resolve file</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>When enabled, doesn't read upstream servers from <i>/etc/resolv.conf</i> which is linked to the resolve file by default.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Resolve file</td>
| |
− | <td>text file; default: <b>none</b></td>
| |
− | <td>Specifies an alternate DNS resolve file to use instead of the default one (<i>/tmp/resolv.conf.auto</i>).</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Ignore /etc/hosts</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>Local domain suffix appended to DHCP names and hosts file entries.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Additional Hosts files</td>
| |
− | <td>text file; default: <b>none</b></td>
| |
− | <td>Uploads a hosts files to use in addition to <i>/etc/hosts</i>.</td>
| |
| </tr> | | </tr> |
| </table> | | </table> |
Line 146: |
Line 77: |
| <td>off | on; default: <b>on</b></td> | | <td>off | on; default: <b>on</b></td> |
| <td>Do not forward reverse lookups for local networks.</td> | | <td>Do not forward reverse lookups for local networks.</td> |
− | </tr>
| |
− | <tr>
| |
− | <td>Filter useless</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>When disabled, does not forward requests that cannot be answered by public name servers.</td>
| |
| </tr> | | </tr> |
| <tr> | | <tr> |
Line 156: |
Line 82: |
| <td>off | on; default: <b>on</b></td> | | <td>off | on; default: <b>on</b></td> |
| <td>Localise hostname depending on the requesting subnet if multiple IPs are available.</td> | | <td>Localise hostname depending on the requesting subnet if multiple IPs are available.</td> |
− | </tr>
| |
− | <tr>
| |
− | <td>Expand hosts</td>
| |
− | <td>off | on; default: <b>on</b></td>
| |
− | <td>Adds local domain suffix to names served from the hosts file(s).</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>No negative cache</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>When disabled, does not cache negative replies, i.e., "no such domain" responses.</td>
| |
| </tr> | | </tr> |
| <tr> | | <tr> |
Line 171: |
Line 87: |
| <td>text file; default: <b>none</b></td> | | <td>text file; default: <b>none</b></td> |
| <td>Uploads an additional DNS servers file. This file may contain lines like 'server=/domain/1.2.3.4' or 'server=1.2.3.4' for domain-specific or full upstream DNS servers.</td> | | <td>Uploads an additional DNS servers file. This file may contain lines like 'server=/domain/1.2.3.4' or 'server=1.2.3.4' for domain-specific or full upstream DNS servers.</td> |
− | </tr>
| |
− | <tr>
| |
− | <td>Strict order</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>When enabled, DNS servers will be queried in the order of the resolve file.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>All Servers</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>When enabled, queries all available upstream DNS servers.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Bogus NX Domain Override</td>
| |
− | <td>ip; default: <b>none</b></td>
| |
− | <td>List of hosts that supply bogus NX domain results.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>DNS server port</td>
| |
− | <td>integer [0..65535]; default: <b>none</b></td>
| |
− | <td>Listening port for inbound DNS queries.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>DNS query port</td>
| |
− | <td>integer [0..65535]; default: <b>none</b></td>
| |
− | <td>Fixed source port for outbound DNS queries.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Max. EDNS0 packet size</td>
| |
− | <td>integer [0..9999999999999999]; default: <b>none</b></td>
| |
− | <td>Maximum allowed size of Extension Mechanisms for Domain Name System.0 UDP packets.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Max. concurrent queries</td>
| |
− | <td>integer [0..9999999999999999]; default: <b>none</b></td>
| |
− | <td>Maximum allowed number of concurrent DNS queries.</td>
| |
| </tr> | | </tr> |
| <tr> | | <tr> |