Board,
Working with VRFs, it seems the DNS forwarding function does not to work when the source LAN making the request is in a VRF.
Config:
ethernet eth2 {
hw-id 52:55:00:d1:55:03
vif 5 {
address 192.168.5.1/24
vrf hs
service {
dns {
forwarding {
allow-from 192.168.5.0/24
dhcp eth2.5
listen-address 192.168.5.1
name-server 199.244.86.2
}
}
}
tcpdump on the vy interface:
vbash-4.1# tcpdump -i eth2.5 port 53 -nn
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth2.5, link-type EN10MB (Ethernet), capture size 262144 bytes
13:55:24.725861 IP 192.168.5.100.61736 > 192.168.5.1.53: 42102+ A? dell dot com. (26)(modified to post)
13:55:29.730015 IP 192.168.5.100.61736 > 192.168.5.1.53: 42102+ A? dell dot com (26)(modified to post)
13:55:34.735016 IP 192.168.5.100.61736 > 192.168.5.1.53: 42102+ A? dell dot com (26)(modified to post)
Request from pc on LAN:
ITMBP2009:Desktop$ nslookup dell dot com 192.168.5.1 (modified to post)
;; connection timed out; no servers could be reached
ITMBP2009:Desktop$
I am assuming this is just part of the development of VRF and all the services that tie into it.
Thanks in advance!
db