Community discussions

MikroTik App
  4. RouterOS
  5. General

[featurereq] Setting interface(s) DNS server is binded to

Post Reply
 
neticted
Member Candidate
Member Candidate
Topic Author
Posts: 137
Joined: Wed Jan 04, 2012 10:36 am

[featurereq] Setting interface(s) DNS server is binded to

Mon Jun 23, 2014 1:18 pm

It would be good to have an option to select which interface DNS server is active on.

For most basic configurations DNS server should be visible only from local network. By default if DNS server is turned on it is available on all interfaces which is not good as DNS on wan interfaces allows router to be easily used for impersonated malicious DNS attatacks.

Now we have to additionally use firewall to block access to DNS server. This is not so good for few reasons:

- it is not obvious. It is easy to forget to set it, and if missed it is not easy to spot error.

- it is more logical when one turns on some service he decides which interface it is binded to.

- using firewall to block access to service from some interfaces wastes more resources that if service simply is not binded to those interfaces.
Top
 
User avatar
docmarius
Forum Guru
Forum Guru
Posts: 1222
Joined: Sat Nov 06, 2010 12:04 pm
Location: Timisoara, Romania
Contact:
Contact docmarius

Re: [featurereq] Setting interface(s) DNS server is binded t

Mon Jun 23, 2014 6:09 pm

+1
And multiple dns instances with selectable interfaces would be even nicer.
Top
Post Reply

Who is online

Users browsing this forum: Bing [Bot], connectlife, critter, maigonis, mfischer, mquan1984, Nullcaller, raimondsp and 83 guests
  4. RouterOS
  5. General