Re: DNS resolver resolves LAN IPs

To: Peter Skvarka <ps%softinengines.com@localhost>
Subject: Re: DNS resolver resolves LAN IPs
From: Greg Troxel <gdt%lexort.com@localhost>
Date: Wed, 19 Feb 2025 11:19:44 -0500

Peter Skvarka <ps%softinengines.com@localhost> writes:

> I have simple private LAN with several machines, no DNS
> service. Machines uses IP address to contact each other and DNS names
> for internet targets.

That sounds normal, except for "no DNS service".

> Even DNS resolver is setup properly and it is able to translate public
> names to IPs, still it tries to do reverse query to internet DNS
> server when target IP is on LAN.

That is also normal.  What is not normal is for it to time out.

Really, it's not "on LAN" that is the issue.  It is using RFC1918
addresses rather than globally-valid addresses.

> Does exist any configuration file where I can put my LAN's IP/netmask
> and DNS resolver will not try reverse queries ?
> Or can be DNS resolver configured by this way ?

(You can run named (bind) and configure it, yes.)

You have not said how things are set up.

What is in /etc/resolv.conf?  Is it pointing to localhost, or someplace
else?

Are you running named?  If so, what is in /var/log/messages?

Are you running some other resolver?

Run

  dig -x 192.168.1.1

and see what you get.  You should get NXDOMAIN very quickly.   If that
uses a nameserver not run by you, and you don't get NXDOMAIN quickly,
then either ask the operator to fix it or stop using it.

Follow-Ups:
- Re: DNS resolver resolves LAN IPs
  - From: Peter Skvarka

References:
- Re: DNS resolver resolves LAN IPs
  - From: Greg Troxel
- Re: DNS resolver resolves LAN IPs
  - From: Peter Skvarka

Prev by Date: Re: DNS resolver resolves LAN IPs
Next by Date: Issues with trickle
Previous by Thread: Re: DNS resolver resolves LAN IPs
Next by Thread: Re: DNS resolver resolves LAN IPs
Indexes:

Home | Main Index | Thread Index | Old Index