Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-17284

[RFE] Add support for --filter-A and --filter-AAAA options

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Unresolved
    • Icon: Minor Minor
    • CentOS Stream 9
    • CentOS Stream 9
    • dnsmasq
    • None
    • FutureFeature
    • None
    • None
    • CentOS Stream
    • None
    • None
    • None
    • None

      What were you trying to do that didn't work?

      In upstream dnsmasq version 2.87 a new feature was added, enabling filtering A and/or AAAA records. This functionality is useful for IPv6 lab environments that need to use nat64 because the ISP does not support IPv6.

      Please provide the package NVR for which bug is seen:

      dnsmasq-2.85-14.el9.x86_64

      How reproducible:

      100% - because dnsmasq on Centos Stream 9 is based on upstream version 2.85.

      Steps to reproduce

      1. Configure dnsmasq with option:
      filter-A

      or

      filter-AAAA

      Expected results

      filter-A functionality patches included in CentOS Stream 9 RPMs.

      A quick look at upstream git log - I believe these are the patches that would be required.

      (I did not include the dbus configuration patches related to filter-A/filter-AAAA)

      Patches
      commit 37a70d39e0cd49f086b757937fa8735e6263cd7a
      Author: Simon Kelley <simon@thekelleys.org.uk>
      Date:   Thu Oct 7 23:12:59 2021 +0100
          Add --filter and --filter-AAAA options.
      commit 5a9eae429a7d0680d606f03f2759d7dde0bbe3f0
      Author: Simon Kelley <simon@thekelleys.org.uk>
      Date:   Mon Mar 20 15:16:29 2023 +0000
          Improve cache use with --filter-A and --filter-AAAA
          
          If --filter-AAAA is set and we have cached entry for
          the domain in question fpr any RR type that allows us to
          return a NODATA reply when --filter-AAAA is set without
          going upstream. Similarly for --filter-A.
      commit 28429720355c21739c851c28b003b6d0b4aee549
      Author: Simon Kelley <simon@thekelleys.org.uk>
      Date:   Mon Mar 20 17:14:17 2023 +0000
          More --filter-AAAA caching improvements.
          
          Cache answers before filtering and filter coming out of the cache.
      commit 1f0f86a0d0d0759de4c5eb1080333618563ee5a0
      Author: Simon Kelley <simon@thekelleys.org.uk>
      Date:   Mon Mar 20 18:32:14 2023 +0000
          Add EDE "filtered" extended error when --filter-A or --filter-AAAA act.
          
          If a NODATA answer is returned instead of actual data for A or AAAA
          queries because of the existence of --filter-A or --filter-AAAA
          config options, then mark the replies with an EDE "filtered" tag.
          
          Basic patch by Petr Menšík, tweaked by Simon Kelley to apply onto
          the preceding caching patches.
       

      Actual results

       

       bad option at line NN of /etc/dnsmasq.conf

       

       

            pemensik@redhat.com Petr Mensik
            rhn-gps-hjensas Harald Jensas
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: