dns - dnsmasq as a IPv6 transparent proxy using DNAT in Centos -
i'm setting transparent dns proxy in centos using dnsmasq. system has 2 interfaces - eth0 lan traffic, eth1 wan (cache miss) traffic. i'm using netfilter/iptables dnat redirect packets received on eth0 ip address of eth0.
this works ipv4 - if run dnsmasq --log-queries flag see requests coming in.
using same setup ipv6, dnsmasq not see request. if @ stats ip6tables can see packets hitting dnat rule.
any idea why dnsmasq isn't processing ipv6 dnat packets?
ipv4 dnat rule
iptables -t nat -a prerouting -i eth0 -p udp --dport 53 -j dnat --to [eth0 ipv4 address]:53
ipv6 dnat rule
ip6tables -t nat -a prerouting -i eno2 -p udp --dport 53 -j dnat --to [eth0 ipv6 address]:53
Comments
Post a Comment