DNS server is enabled and works fine (answers are added to "/ip dns cache print").
How to intercept forwarding DNS requests from clients 10.20.30.0/24 to server 1.2.3.4 and redirect them to builtin DNS?
I tried so:
Code: Select all
> /ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; Intercept DNS requests and handle them by builtin server
chain=dstnat action=redirect to-ports=53 src-address=10.20.30.0/24
dst-address=1.2.3.4 dst-port=53 protocol=udp
1 ;;; Intercept DNS requests and handle them by builtin server
chain=dstnat action=redirect to-ports=53 src-address=10.20.30.0/24
dst-address=1.2.3.4 dst-port=53 protocol=tcp