For years, our network has had one connection to the internet. Recently, we added a second, independent gateway on the "far end" to improve reliability. This required us to juggle routing and deal with two mutually suspicious DNSes.
We rooted out all the hard-coded DNS server addresses in our CPEs, instead instructing all CPEs to request DNS service from their local tower, which would forward to the correct full server.
We encountered strangeness while correcting DHCP leases. We took out the hard-coded DNS server addresses in /ip dhcp-server network, and instead had the subscriber PCs go to the CPE for resolution. In other words, in a DHCP pool where we handed out LAN addresses of 192.168.1.2-192.168.1.254, both the gateway and the DNS server were set to 192.168.1.1.
This resulted in total failure until we turned on "allow-remote-requests" in the CPE's DNS panel.
A request from 192.168.1.2 to 192.168.1.1 qualifies as a "remote" request???
The wiki manual isn't very clear as to exactly what this switch controls; it just uses the word "remote" without really explaining what is going on. I feel like Inigo Montoya -- "I do not think that word means what you think it means."
What precisely does it mean?