Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    DNS resolution across two sites with Wireguard site-to-site tunnel

    Scheduled Pinned Locked Moved DHCP and DNS
    1 Posts 1 Posters 31 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • O Offline
      ohmantics
      last edited by

      Two sites, one is a subdomain of the other. Each runs the DNS Forwarder, handling DHCP names and a handful of overrides then falling back to Quad9.

      I'd like to have the forwarder look for bare names and reverse lookups at the other site. Ideally DNS would not be totally broken when the tunnel is down.

      It seems like --server and --rev-server options could be added to each site for the other site, but those would be "upstream servers" and perhaps not be asked about bare names, which we wouldn't want to leak to Quad9.

      What's the right approach? Is there any way to handle this automatically such as when BGP neighbors establish?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.