version 1.1.1.1, 2013/07/29 19:37:40
|
version 1.1.1.2, 2014/06/15 16:31:38
|
Line 1
|
Line 1
|
<HTML> |
<HTML> |
<HEAD> |
<HEAD> |
<TITLE> Dnsmasq - a DNS forwarder for NAT firewalls.</TITLE> | <TITLE> Dnsmasq - network services for small networks.</TITLE> |
<link rel="icon" |
<link rel="icon" |
href="http://www.thekelleys.org.uk/dnsmasq/images/favicon.ico"> |
href="http://www.thekelleys.org.uk/dnsmasq/images/favicon.ico"> |
</HEAD> |
</HEAD> |
Line 11
|
Line 11
|
<td align="middle" valign="middle"><h1>Dnsmasq</h1></td> |
<td align="middle" valign="middle"><h1>Dnsmasq</h1></td> |
<td align="right" valign="middle"><img border="0" src="http://www.thekelleys.org.uk/dnsmasq/images/icon.png" /></td></tr> |
<td align="right" valign="middle"><img border="0" src="http://www.thekelleys.org.uk/dnsmasq/images/icon.png" /></td></tr> |
</table> |
</table> |
|
Dnsmasq provides network infrastructure for small networks: DNS, DHCP, router advertisement and network boot. It is designed to be |
|
lightweight and have a small footprint, suitable for resource constrained routers and firewalls. It has also been widely used |
|
for tethering on smartphones and portable hotspots, and to support virtual networking in virtualisation frameworks. |
|
Supported platforms include Linux (with glibc and uclibc), Android, *BSD, and Mac OS X. Dnsmasq is included in most |
|
Linux distributions and the ports systems of FreeBSD, OpenBSD and NetBSD. Dnsmasq provides full IPv6 support. |
|
|
Dnsmasq is a lightweight, easy to configure DNS forwarder and DHCP |
|
server. It is designed to provide DNS and, optionally, DHCP, to a |
|
small network. It can serve the names of local machines which are |
|
not in the global DNS. The DHCP server integrates with the DNS |
|
server and allows machines with DHCP-allocated addresses |
|
to appear in the DNS with names configured either in each host or |
|
in a central configuration file. Dnsmasq supports static and dynamic |
|
DHCP leases and BOOTP/TFTP/PXE for network booting of diskless machines. |
|
<P> |
<P> |
Dnsmasq is targeted at home networks using NAT and | The DNS subsystem provides a local DNS server for the network, with forwarding of all query types to upstream recursive DNS servers and |
connected to the internet via a modem, cable-modem or ADSL | cacheing of common record types (A, AAAA, CNAME and PTR, also DNSKEY and DS when DNSSEC is enabled). |
connection but would be a good choice for any smallish network (up to | <DIR> |
1000 clients is known to work) where low | <LI>Local DNS names can be defined by reading /etc/hosts, by importing names from the DHCP subsystem, or by configuration of a wide range of useful record types.</LI> |
resource use and ease of configuration are important. | <LI>Upstream servers can be configured in a variety of convenient ways, including dynamic configuration as these change on moving upstream network. |
| <LI>Authoritative DNS mode allows local DNS names may be exported to zone in the global DNS. Dnsmasq acts as authoritative server for this zone, and also provides |
| zone transfer to secondaries for the zone, if required.</LI> |
| <LI>DNSSEC validation may be performed on DNS replies from upstream nameservers, providing security against spoofing and cache poisoning.</LI> |
| <LI>Specified sub-domains can be directed to their own upstream DNS servers, making VPN configuration easy.</LI> |
| <LI>Internationalised domain names are supported. |
| </DIR> |
<P> |
<P> |
Supported platforms include Linux (with glibc and uclibc), Android, *BSD, | The DHCP subsystem supports DHCPv4, DHCPv6, BOOTP and PXE. |
Solaris and Mac OS X. | |
Dnsmasq is included in at least the following Linux distributions: | |
Gentoo, Debian, Slackware, Suse, Fedora, | |
Smoothwall, IP-Cop, floppyfw, Firebox, LEAF, Freesco, fli4l, | |
CoyoteLinux, Endian Firewall and | |
Clarkconnect. It is also available as FreeBSD, OpenBSD and NetBSD ports and is used in | |
Linksys wireless routers (dd-wrt, openwrt and the stock firmware) and the m0n0wall project. | |
<P> | |
Dnsmasq provides the following features: | |
<DIR> |
<DIR> |
| <LI> Both static and dynamic DHCP leases are supported, along with stateless mode in DHCPv6.</LI> |
<LI> | <LI> The PXE system is a full PXE server, supporting netboot menus and multiple architecture support. It |
The DNS configuration of machines behind the firewall is simple and | includes proxy-mode, where the PXE system co-operates with another DHCP server.</LI> |
doesn't depend on the details of the ISP's dns servers | <LI> There is a built in read-only TFTP server to support netboot.</LI> |
<LI> | <LI> Machines which are configured by DHCP have their names automatically |
Clients which try to do DNS lookups while a modem link to the | |
internet is down will time out immediately. | |
</LI> | |
<LI> | |
Dnsmasq will serve names from the /etc/hosts file on the firewall | |
machine: If the names of local machines are there, then they can all | |
be addressed without having to maintain /etc/hosts on each machine. | |
</LI> | |
<LI> | |
The integrated DHCP server supports static and dynamic DHCP leases and | |
multiple networks and IP ranges. It works across BOOTP relays and | |
supports DHCP options including RFC3397 DNS search lists. | |
Machines which are configured by DHCP have their names automatically | |
included in the DNS and the names can specified by each machine or |
included in the DNS and the names can specified by each machine or |
centrally by associating a name with a MAC address in the dnsmasq | centrally by associating a name with a MAC address or UID in the dnsmasq |
config file. | configuration file.</LI> |
</LI> | |
<LI> | |
Dnsmasq caches internet addresses (A records and AAAA records) and address-to-name | |
mappings (PTR records), reducing the load on upstream servers and | |
improving performance (especially on modem connections). | |
</LI> | |
<LI> | |
Dnsmasq can be configured to automatically pick up the addresses of | |
its upstream nameservers from ppp or dhcp configuration. It will | |
automatically reload this information if it changes. This facility | |
will be of particular interest to maintainers of Linux firewall | |
distributions since it allows dns configuration to be made automatic. | |
</LI> | |
<LI> | |
On IPv6-enabled boxes, dnsmasq can both talk to upstream servers via IPv6 | |
and offer DNS service via IPv6. On dual-stack (IPv4 and IPv6) boxes it talks | |
both protocols and can even act as IPv6-to-IPv4 or IPv4-to-IPv6 forwarder. | |
</LI> | |
<LI> | |
Dnsmasq can be configured to send queries for certain domains to | |
upstream servers handling only those domains. This makes integration | |
with private DNS systems easy. | |
</LI> | |
<LI> | |
Dnsmasq supports MX and SRV records and can be configured to return MX records | |
for any or all local machines. | |
</LI> | |
</DIR> |
</DIR> |
|
<P> |
|
The Router Advertisement subsystem provides basic autoconfiguration for IPv6 hosts. It can be used stand-alone or in conjunction with DHCPv6. |
|
<DIR> |
|
<LI> The M and O bits are configurable, to control hosts' use of DHCPv6.</LI> |
|
<LI> Router advertisements can include the RDNSS option.</LI> |
|
<LI> There is a mode which uses name information from DHCPv4 configuration to provide DNS entries |
|
for autoconfigured IPv6 addresses which would otherwise be anonymous.</LI> |
|
</DIR> |
|
<P> |
|
|
|
For extra compactness, unused features may be omitted at compile time. |
|
|
|
|
<H2>Get code.</H2> |
<H2>Get code.</H2> |
|
|
<A HREF="http://www.thekelleys.org.uk/dnsmasq/">Download</A> dnsmasq here. |
<A HREF="http://www.thekelleys.org.uk/dnsmasq/">Download</A> dnsmasq here. |
Line 102 the repo, or get a copy using git protocol with the co
|
Line 68 the repo, or get a copy using git protocol with the co
|
<PRE><TT>git clone git://thekelleys.org.uk/dnsmasq.git </TT></PRE> |
<PRE><TT>git clone git://thekelleys.org.uk/dnsmasq.git </TT></PRE> |
|
|
<H2>License.</H2> |
<H2>License.</H2> |
Dnsmasq is distributed under the GPL. See the file COPYING in the distribution | Dnsmasq is distributed under the GPL, version 2 or version 3 at your discretion. See the files COPYING and COPYING-v3 in the distribution |
for details. |
for details. |
|
|
<H2>Contact.</H2> |
<H2>Contact.</H2> |
Line 110 There is a dnsmasq mailing list at <A
|
Line 76 There is a dnsmasq mailing list at <A
|
HREF="http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss"> |
HREF="http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss"> |
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss</A> which should be the |
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss</A> which should be the |
first location for queries, bugreports, suggestions etc. |
first location for queries, bugreports, suggestions etc. |
Dnsmasq was written by Simon Kelley. You can contact me at <A | You can contact me at <A |
HREF="mailto:simon@thekelleys.org.uk">simon@thekelleys.org.uk</A>. |
HREF="mailto:simon@thekelleys.org.uk">simon@thekelleys.org.uk</A>. |
|
|
|
<H2>Donations.</H2> |
|
Dnsmasq is mainly written and maintained by Simon Kelley. For most of its life, dnsmasq has been a spare-time project. |
|
These days I'm working on it as my main activity. |
|
I don't have an employer or anyone who pays me regularly to work on dnsmasq. If you'd like to make |
|
a contribution towards my expenses, please use the donation button below. |
|
<form action="https://www.paypal.com/cgi-bin/webscr" method="post" target="_top"> |
|
<input type="hidden" name="cmd" value="_s-xclick"> |
|
<input type="hidden" name="hosted_button_id" value="V3X9GVW5GX6DA"> |
|
<input type="image" src="https://www.paypalobjects.com/en_US/GB/i/btn/btn_donateCC_LG.gif" border="0" name="submit" alt="PayPal – The safer, easier way to pay online."> |
|
<img alt="" border="0" src="https://www.paypalobjects.com/en_GB/i/scr/pixel.gif" width="1" height="1"> |
|
</form> |
|
|
|
|
</BODY> |
</BODY> |
|
|