3a06dd60eb
RFC 6761 defines a number of top level domains should not be forwarded to the Internet's domain servers since they are not responsible for those domains. This change adds a list of domains that will be blocked when 'boguspriv' is used and augments that which is already blocked by dnsmasq's notion of 'local service' using '--bogus-priv' i.e. RFC 1918 private addresses and IPv6 prefixes as defined in RFC 6303. To make this configurable rather than hard coded in dnsmasq's init script, a new file /usr/share/dnsmasq/rfc6761.conf is conditionally included. The default file matches the RFC 6761 recommendation along with a few other top level domains that should not be forwarded to the Internet. Compile & run tested Archer C7 v2 Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
15 lines
391 B
Text
15 lines
391 B
Text
# RFC6761 included configuration file for dnsmasq
|
|
#
|
|
# includes a list of domains that should not be forwarded to Internet name servers
|
|
# to reduce burden on them, asking questions that they won't know the answer to.
|
|
|
|
server=/bind/
|
|
server=/example/
|
|
server=/example.com/
|
|
server=/example.org/
|
|
server=/example.net/
|
|
server=/invalid/
|
|
server=/local/
|
|
server=/localhost/
|
|
server=/onion/
|
|
server=/test/
|