Feature request: DNS based address resolution for tools

RouterOS General
1

Would it be possible to add domain name resolution to certain tools and services? like ping and OpenVPN Clients? Right now I need to specify an IP address, but it would be more dynamic if you just could specify a domain name like “vpn.yourdomain.net” and let your dns-servers resolve the IP address.

/interface ovpn-client> add  connect-to=

ConnectTo ::= A.B.C.D    (IP address)

Same for netwatch for example… Many functions rely solely on IP addresses where you should be able to specify a domain name as well…
Can make things more managable/change proof.

Traceroute provides the option “use-dns” to be able to specify a domain name (and does reverse lookup as well in this case).

2

+1

3

downvote
only if routeros had dnssec active, else there is a security risk doing this

but,

providing a dig like tool would be great

4

It’s not like anyone would force you to use it, you can stay safe with IP addresses as long as you want. But if anyone needs to connect to hostnames (VPN servers out of their control, NTP servers, …), they simply have to resolve the names somehow. And current script-based solution is like from stone age. And as much unsecure as direct support for hostnames would be, so adding it would have no disadvantages at all.

5

Or add both… unsecure and dnssec based…

6

it would be great to build connect few RB via vpn using dyndns names, not ips :slight_smile:

7
  • 1
8

If you can use a script to resolve a dinamic domain and put the ip to the tunel interface.

9
  • 1
10

Bump

As many other things I would really like to see this happen, seems not so hard to implement.

11

I see in 6.3 you added this for pptp, l2tp and sstp, and now in 6.4 for ovpn as well. Thanks!