How to configure dnsmasq as an authoritative DNS server?












0















I'd like to setup dnsmasq as an authoritative DNS server, but can't find any good guides for it. So could somebody please post a sample configuration of dnsmasq as an authoritative DNS server (with some basic options, such as A records)? I'd also like to know the path of the configuration, just so I set it up properly.
EDIT: Some clarification on my use case:

I intend to setup an authoritative DNS server so I can have automatic renewal of Let's Encrypt certificates using the DNS-01 challenge.

What I do not understand:

I've breifly read over http://www.thekelleys.org.uk/dnsmasq/docs/dnsmasq-man.html, but I don't understand which options are required for a basic configuration in authoritative only mode, nor how to configure the options.






debian dns dnsmasq







share|improve this question
















bumped to the homepage by Community 2 hours ago


This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.
















  • Did you look at thekelleys.org.uk/dnsmasq/docs/setup.html ?

    – Patrick Mevzek
    May 1 '18 at 13:33











  • Yes, but I don't understand much of it, so that's why I'm asking for a sample configuration.

    – Giraffer
    May 1 '18 at 13:54











  • Start by explaining what you do not understand then... go back to the basics, state your question with all details on your use case.

    – Patrick Mevzek
    May 1 '18 at 14:17











  • @PatrickMevzek I've updated my question. If it still needs improvement, please post another comment telling me what information I should include. Thanks in advance!

    – Giraffer
    May 1 '18 at 14:42
















0















I'd like to setup dnsmasq as an authoritative DNS server, but can't find any good guides for it. So could somebody please post a sample configuration of dnsmasq as an authoritative DNS server (with some basic options, such as A records)? I'd also like to know the path of the configuration, just so I set it up properly.
EDIT: Some clarification on my use case:

I intend to setup an authoritative DNS server so I can have automatic renewal of Let's Encrypt certificates using the DNS-01 challenge.

What I do not understand:

I've breifly read over http://www.thekelleys.org.uk/dnsmasq/docs/dnsmasq-man.html, but I don't understand which options are required for a basic configuration in authoritative only mode, nor how to configure the options.






debian dns dnsmasq







share|improve this question
















bumped to the homepage by Community 2 hours ago


This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.
















  • Did you look at thekelleys.org.uk/dnsmasq/docs/setup.html ?

    – Patrick Mevzek
    May 1 '18 at 13:33











  • Yes, but I don't understand much of it, so that's why I'm asking for a sample configuration.

    – Giraffer
    May 1 '18 at 13:54











  • Start by explaining what you do not understand then... go back to the basics, state your question with all details on your use case.

    – Patrick Mevzek
    May 1 '18 at 14:17











  • @PatrickMevzek I've updated my question. If it still needs improvement, please post another comment telling me what information I should include. Thanks in advance!

    – Giraffer
    May 1 '18 at 14:42














0












0








0








I'd like to setup dnsmasq as an authoritative DNS server, but can't find any good guides for it. So could somebody please post a sample configuration of dnsmasq as an authoritative DNS server (with some basic options, such as A records)? I'd also like to know the path of the configuration, just so I set it up properly.
EDIT: Some clarification on my use case:

I intend to setup an authoritative DNS server so I can have automatic renewal of Let's Encrypt certificates using the DNS-01 challenge.

What I do not understand:

I've breifly read over http://www.thekelleys.org.uk/dnsmasq/docs/dnsmasq-man.html, but I don't understand which options are required for a basic configuration in authoritative only mode, nor how to configure the options.






debian dns dnsmasq







share|improve this question
















I'd like to setup dnsmasq as an authoritative DNS server, but can't find any good guides for it. So could somebody please post a sample configuration of dnsmasq as an authoritative DNS server (with some basic options, such as A records)? I'd also like to know the path of the configuration, just so I set it up properly.
EDIT: Some clarification on my use case:

I intend to setup an authoritative DNS server so I can have automatic renewal of Let's Encrypt certificates using the DNS-01 challenge.

What I do not understand:

I've breifly read over http://www.thekelleys.org.uk/dnsmasq/docs/dnsmasq-man.html, but I don't understand which options are required for a basic configuration in authoritative only mode, nor how to configure the options.






debian dns dnsmasq




debian dns dnsmasq






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited May 1 '18 at 14:41







Giraffer

















asked May 1 '18 at 0:35









GirafferGiraffer

997




997





bumped to the homepage by Community 2 hours ago


This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.







bumped to the homepage by Community 2 hours ago


This question has answers that may be good or bad; the system has marked it active so that they can be reviewed.















  • Did you look at thekelleys.org.uk/dnsmasq/docs/setup.html ?

    – Patrick Mevzek
    May 1 '18 at 13:33











  • Yes, but I don't understand much of it, so that's why I'm asking for a sample configuration.

    – Giraffer
    May 1 '18 at 13:54











  • Start by explaining what you do not understand then... go back to the basics, state your question with all details on your use case.

    – Patrick Mevzek
    May 1 '18 at 14:17











  • @PatrickMevzek I've updated my question. If it still needs improvement, please post another comment telling me what information I should include. Thanks in advance!

    – Giraffer
    May 1 '18 at 14:42



















  • Did you look at thekelleys.org.uk/dnsmasq/docs/setup.html ?

    – Patrick Mevzek
    May 1 '18 at 13:33











  • Yes, but I don't understand much of it, so that's why I'm asking for a sample configuration.

    – Giraffer
    May 1 '18 at 13:54











  • Start by explaining what you do not understand then... go back to the basics, state your question with all details on your use case.

    – Patrick Mevzek
    May 1 '18 at 14:17











  • @PatrickMevzek I've updated my question. If it still needs improvement, please post another comment telling me what information I should include. Thanks in advance!

    – Giraffer
    May 1 '18 at 14:42

















Did you look at thekelleys.org.uk/dnsmasq/docs/setup.html ?

– Patrick Mevzek
May 1 '18 at 13:33





Did you look at thekelleys.org.uk/dnsmasq/docs/setup.html ?

– Patrick Mevzek
May 1 '18 at 13:33













Yes, but I don't understand much of it, so that's why I'm asking for a sample configuration.

– Giraffer
May 1 '18 at 13:54





Yes, but I don't understand much of it, so that's why I'm asking for a sample configuration.

– Giraffer
May 1 '18 at 13:54













Start by explaining what you do not understand then... go back to the basics, state your question with all details on your use case.

– Patrick Mevzek
May 1 '18 at 14:17





Start by explaining what you do not understand then... go back to the basics, state your question with all details on your use case.

– Patrick Mevzek
May 1 '18 at 14:17













@PatrickMevzek I've updated my question. If it still needs improvement, please post another comment telling me what information I should include. Thanks in advance!

– Giraffer
May 1 '18 at 14:42





@PatrickMevzek I've updated my question. If it still needs improvement, please post another comment telling me what information I should include. Thanks in advance!

– Giraffer
May 1 '18 at 14:42










1 Answer
1






active

oldest

votes


















0














# Do not read /etc/resolv.conf

no-resolv



# Do not read /etc/hosts

no-hosts



# e.g. 

# Define the zone

auth-zone=example.com

# Set SOA record

auth-soa=12345678,admin.example.com

# Set A record

address=/www.example.com/10.2.3.4

# Set MX record

mx-host=example.com,www.example.com,10

# Set TXT record

txt-record=_acme-challenge.www.example.com,f0o...bar


I found a good example. https://www.onderka.com/computer-und-netzwerk/autoritativer-dns-server-mit-dnsmasq/



By the way, do you know acme-dns?
https://github.com/joohoi/acme-dns



It's more suitable for automatic renewals of Let's Encrypt certificates.






share|improve this answer

























    Your Answer








    StackExchange.ready(function() {
    var channelOptions = {
    tags: "".split(" "),
    id: "106"
    };
    initTagRenderer("".split(" "), "".split(" "), channelOptions);

    StackExchange.using("externalEditor", function() {
    // Have to fire editor after snippets, if snippets enabled
    if (StackExchange.settings.snippets.snippetsEnabled) {
    StackExchange.using("snippets", function() {
    createEditor();
    });
    }
    else {
    createEditor();
    }
    });

    function createEditor() {
    StackExchange.prepareEditor({
    heartbeatType: 'answer',
    autoActivateHeartbeat: false,
    convertImagesToLinks: false,
    noModals: true,
    showLowRepImageUploadWarning: true,
    reputationToPostImages: null,
    bindNavPrevention: true,
    postfix: "",
    imageUploader: {
    brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
    contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
    allowUrls: true
    },
    onDemand: true,
    discardSelector: ".discard-answer"
    ,immediatelyShowMarkdownHelp:true
    });


    }
    });














    draft saved

    draft discarded


















    StackExchange.ready(
    function () {
    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f441019%2fhow-to-configure-dnsmasq-as-an-authoritative-dns-server%23new-answer', 'question_page');
    }
    );

    Post as a guest















    Required, but never shown

























    1 Answer
    1






    active

    oldest

    votes








    1 Answer
    1






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes









    0














    # Do not read /etc/resolv.conf
    
no-resolv
    

    
# Do not read /etc/hosts
    
no-hosts
    

    
# e.g. 
    
# Define the zone
    
auth-zone=example.com
    
# Set SOA record
    
auth-soa=12345678,admin.example.com
    
# Set A record
    
address=/www.example.com/10.2.3.4
    
# Set MX record
    
mx-host=example.com,www.example.com,10
    
# Set TXT record
    
txt-record=_acme-challenge.www.example.com,f0o...bar


    I found a good example. https://www.onderka.com/computer-und-netzwerk/autoritativer-dns-server-mit-dnsmasq/



    By the way, do you know acme-dns?
    https://github.com/joohoi/acme-dns



    It's more suitable for automatic renewals of Let's Encrypt certificates.






    share|improve this answer






























      0














      # Do not read /etc/resolv.conf
      
no-resolv
      

      
# Do not read /etc/hosts
      
no-hosts
      

      
# e.g. 
      
# Define the zone
      
auth-zone=example.com
      
# Set SOA record
      
auth-soa=12345678,admin.example.com
      
# Set A record
      
address=/www.example.com/10.2.3.4
      
# Set MX record
      
mx-host=example.com,www.example.com,10
      
# Set TXT record
      
txt-record=_acme-challenge.www.example.com,f0o...bar


      I found a good example. https://www.onderka.com/computer-und-netzwerk/autoritativer-dns-server-mit-dnsmasq/



      By the way, do you know acme-dns?
      https://github.com/joohoi/acme-dns



      It's more suitable for automatic renewals of Let's Encrypt certificates.






      share|improve this answer




























        0












        0








        0







        # Do not read /etc/resolv.conf
        
no-resolv
        

        
# Do not read /etc/hosts
        
no-hosts
        

        
# e.g. 
        
# Define the zone
        
auth-zone=example.com
        
# Set SOA record
        
auth-soa=12345678,admin.example.com
        
# Set A record
        
address=/www.example.com/10.2.3.4
        
# Set MX record
        
mx-host=example.com,www.example.com,10
        
# Set TXT record
        
txt-record=_acme-challenge.www.example.com,f0o...bar


        I found a good example. https://www.onderka.com/computer-und-netzwerk/autoritativer-dns-server-mit-dnsmasq/



        By the way, do you know acme-dns?
        https://github.com/joohoi/acme-dns



        It's more suitable for automatic renewals of Let's Encrypt certificates.






        share|improve this answer















        # Do not read /etc/resolv.conf
        
no-resolv
        

        
# Do not read /etc/hosts
        
no-hosts
        

        
# e.g. 
        
# Define the zone
        
auth-zone=example.com
        
# Set SOA record
        
auth-soa=12345678,admin.example.com
        
# Set A record
        
address=/www.example.com/10.2.3.4
        
# Set MX record
        
mx-host=example.com,www.example.com,10
        
# Set TXT record
        
txt-record=_acme-challenge.www.example.com,f0o...bar


        I found a good example. https://www.onderka.com/computer-und-netzwerk/autoritativer-dns-server-mit-dnsmasq/



        By the way, do you know acme-dns?
        https://github.com/joohoi/acme-dns



        It's more suitable for automatic renewals of Let's Encrypt certificates.







        share|improve this answer














        share|improve this answer



        share|improve this answer








        edited Oct 30 '18 at 15:19

























        answered Oct 30 '18 at 14:25









        ayaguchiayaguchi

        12




        12






























            draft saved

            draft discarded




















































            Thanks for contributing an answer to Unix & Linux Stack Exchange!


            • Please be sure to answer the question. Provide details and share your research!

            But avoid



            • Asking for help, clarification, or responding to other answers.

            • Making statements based on opinion; back them up with references or personal experience.


            To learn more, see our tips on writing great answers.




            draft saved


            draft discarded














            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f441019%2fhow-to-configure-dnsmasq-as-an-authoritative-dns-server%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown





















































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown

































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown







            -

            Popular posts from this blog

            Accessing regular linux commands in Huawei's Dopra Linux

            Image
            4 Backstory: I have a Huawei HG8245 router in my house and I want to change the default username/password. I've tried following this guide but the config file always gets reset. My ISP isn't helping either so I'm looking for other ways to accomplish this. The router has telnet access so this seems like a way to change the credentials. The first shell I gain access to looks like this: WAP> Pressing "?" gives me a list of available commands which I've pasted here, the two interesting ones are "su" and "shell". I can't seem to get su access, even after logging in as root (challenge password prompt, and then nothing happens), but shell gives me a proper linux shell. WAP>shell BusyBox v1.18.4 (2017-12-26 17:06:34 CST) built-in shell (ash) Enter 'hel...
            Read more

            Can't connect RFCOMM socket: Host is down

            Image
            up vote 3 down vote favorite I have bluez 5.4.3 and I am attempting to communicate with a ble device through minicom. These two deceives (my computer and a bluno nano) are alreadt paired and this has been my method so far. #bluetoothctl # pair xx:xx:xx:xx:xx:xx # exit Everything is working well so far then... #sudo rfcomm connect /dev/rfcomm0 xx:xx:xx:xx:xx:xx 1 & [1] 3665 Can't connect RFCOMM socket: Host is down Does anyone know how to resolve this issue? Any help would be very much appreciated. bluetooth bluez share | improve this question asked Feb 9 '17 at 18:46 Brandon Knape 46 2 ...
            Read more

            Kernel panic - not syncing: Fatal Exception in Interrupt

            Image
            0 Every day this error occured on my pc, kernel panic error on interrupt, what will be the problem? linux-mint share asked 6 mins ago Vinod Selvin Vinod Selvin 1 1 New contributor Vinod Selvin is a new contributor to this site. Take care in asking for clarification, commenting, and answering. Check out our Code of Conduct. add a comment ...
            Read more