LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6754 Commits
1 Branch
46 MiB
Tree: 2b9f64ebde
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2b9f64ebde'
${ noResults }
openwrt-packages-dist/net/unbound/files/dnsmasq.sh

182 lines
5.2 KiB
Raw Normal View History

Unbound: Add files to enable forward link to dnsmasq -dnsmasq really provides nice local DHCP-DNS records -Unbound host records would be clumsy to update -Unbound can be configured to forward to dnsmasq -iptools provided to facilitate PTR records -flexible ipv6 colon notation is a bit complex Signed-off-by: Eric Luehrsen <ericluehrsen@hotmail.com>
8 years ago
 
  1. #!/bin/sh

  2. ##############################################################################
  3. #
  4. # This program is free software; you can redistribute it and/or modify
  5. # it under the terms of the GNU General Public License version 2 as
  6. # published by the Free Software Foundation.
  7. #
  8. # This program is distributed in the hope that it will be useful,
  9. # but WITHOUT ANY WARRANTY; without even the implied warranty of
  10. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  11. # GNU General Public License for more details.
  12. #
  13. # Copyright (C) 2016 Eric Luehrsen
  14. #
  15. ##############################################################################
  16. #
  17. # This crosses over to the dnsmasq UCI file "dhcp" and parses it for fields
  18. # that will allow Unbound to request local host DNS of dnsmasq. We need to look
  19. # at the interfaces in "dhcp" and get their subnets. The Unbound conf syntax
  20. # makes this a little difficult. First in "server:" we need to create private
  21. # zones for the domain and PTR records. Then we need to create numerous
  22. # "forward:" clauses to forward those zones to dnsmasq.
  23. #
  24. ##############################################################################
  25. 

  26. create_local_zone() {
  27.   local cfg="$1"
  28.   local fwd_port fwd_domain
  29. 

  30.   config_get fwd_domain "$cfg" domain
  31.   config_get fwd_port   "$cfg" port
  32. 

  33. 

  34.   if [ -n "$fwd_domain" -a -n "$fwd_port" -a ! "$fwd_port" -eq 53 ] ; then
  35.     # dnsmasq localhost listening ports (possible multiple instances)
  36.     UNBOUND_N_FWD_PORTS="$UNBOUND_N_FWD_PORTS $fwd_port"
  37.     UNBOUND_TXT_FWD_ZONE="$UNBOUND_TXT_FWD_ZONE $fwd_domain"
  38. 

  39.     {
  40.       # This creates DOMAIN local privledges
  41.       echo "  private-domain: \"$fwd_domain\""
  42.       echo "  local-zone: \"$fwd_domain.\" transparent"
  43.       echo "  domain-insecure: \"$fwd_domain\""
  44.       echo
  45.     } >> $UNBOUND_CONFFILE
  46.   fi
  47. }
  48. 

  49. ##############################################################################
  50. 

  51. create_local_arpa() {
  52.   local cfg="$1"
  53.   local logint dhcpv4 dhcpv6 ignore
  54.   local subnets subnets4 subnets6
  55.   local forward arpa
  56.   local validip4 validip6 privateip
  57. 

  58.   config_get logint "$cfg" interface
  59.   config_get dhcpv4 "$cfg" dhcpv4
  60.   config_get dhcpv6 "$cfg" dhcpv6
  61.   config_get_bool ignore "$cfg" ignore 0
  62. 

  63.   # Find the list of addresses assigned to a logical interface
  64.   # Its typical to have a logical gateway split NAME and NAME6
  65.   network_get_subnets  subnets4 "$logint"
  66.   network_get_subnets6 subnets6 "$logint"
  67.   subnets="$subnets4 $subnets6"
  68. 

  69.   network_get_subnets  subnets4 "${logint}6"
  70.   network_get_subnets6 subnets6 "${logint}6"
  71.   subnets="$subnets $subnets4 $subnets6"
  72. 

  73. 

  74.   if [ -z "$subnets" ] ; then
  75.     forward=""
  76. 

  77.   elif [ -z "$UNBOUND_N_FWD_PORTS" ] ; then
  78.     forward=""
  79. 

  80.   elif [ "$ignore" -gt 0 ] ; then
  81.     if [ "$UNBOUND_B_GATE_NAME" -gt 0 ] ; then
  82.       # Only forward the one gateway host.
  83.       forward="host"
  84. 

  85.     else
  86.       forward=""
  87.     fi
  88. 

  89.   else
  90.     # Forward the entire private subnet.
  91.     forward="domain"
  92.   fi
  93. 

  94. 

  95.   if [ -n "$forward" ] ; then
  96.     for subnet in $subnets ; do
  97.       validip4=$( valid_subnet4 $subnet )
  98.       validip6=$( valid_subnet6 $subnet )
  99.       privateip=$( private_subnet $subnet )
  100. 

  101. 

  102.       if [ "$validip4" = "ok" -a "$dhcpv4" != "disable" ] ; then
  103.         if [ "$forward" = "domain" ] ; then
  104.           arpa=$( domain_ptr_ip4 "$subnet" )
  105.         else
  106.           arpa=$( host_ptr_ip4 "$subnet" )
  107.         fi
  108. 

  109.       elif [ "$validip6" = "ok" -a "$dhcpv6" != "disable" ] ; then
  110.         if [ "$forward" = "domain" ] ; then
  111.           arpa=$( domain_ptr_ip6 "$subnet" )
  112.         else
  113.           arpa=$( host_ptr_ip6 "$subnet" )
  114.         fi
  115. 

  116.       else
  117.         arpa=""
  118.       fi
  119. 

  120. 

  121.       if [ -n "$arpa" ] ; then
  122.         if [ "$privateip" = "ok" ] ; then
  123.           {
  124.             # This creates ARPA local zone privledges
  125.             echo "  local-zone: \"$arpa.\" transparent"
  126.             echo "  domain-insecure: \"$arpa\""
  127.             echo
  128.           } >> $UNBOUND_CONFFILE
  129.         fi
  130. 

  131. 

  132.         UNBOUND_TXT_FWD_ZONE="$UNBOUND_TXT_FWD_ZONE $arpa"
  133.       fi
  134.     done
  135.   fi
  136. }
  137. 

  138. ##############################################################################
  139. 

  140. forward_local_zone() {
  141.   if [ -n "$UNBOUND_N_FWD_PORTS" -a -n "$UNBOUND_TXT_FWD_ZONE" ] ; then
  142.     for fwd_domain in $UNBOUND_TXT_FWD_ZONE ; do
  143.       {
  144.         # This is derived of create_local_zone/arpa
  145.         # but forward: clauses need to be seperate
  146.         echo "forward-zone:"
  147.         echo "  name: \"$fwd_domain.\""
  148. 

  149.         for port in $UNBOUND_N_FWD_PORTS ; do
  150.           echo "  forward-addr: 127.0.0.1@$port"
  151.         done
  152. 

  153.         echo
  154.       } >> $UNBOUND_CONFFILE
  155.     done
  156.   fi
  157. }
  158. 

  159. ##############################################################################
  160. 

  161. dnsmasq_link() {
  162.   ####################
  163.   # UCI @ dhcp       #
  164.   ####################
  165. 

  166. 

  167.   if [ "$UNBOUND_B_DNSMASQ" -gt 0 ] ; then
  168.     # Forward to dnsmasq on same host for DHCP lease hosts
  169.     echo "  do-not-query-localhost: no" >> $UNBOUND_CONFFILE
  170.     # Look at dnsmasq settings
  171.     config_load dhcp
  172.     # Zone for DHCP / SLAAC-PING DOMAIN
  173.     config_foreach create_local_zone dnsmasq
  174.     # Zone for DHCP / SLAAC-PING ARPA
  175.     config_foreach create_local_arpa dhcp
  176.     # Now create ALL seperate forward: clauses
  177.     forward_local_zone
  178.   fi
  179. }
  180. 

  181. ##############################################################################
  182.