Comma-separated DNS list not allowed
Hello Untangle Community,
Is using a comma-separated IP list in the DNS server field no longer supported as stated here?
https://support.untangle.com/hc/en-u...Server-Entries
When I attempt this, I receive the error shown below. This occurs when the interface is set to Static or DHCP...
untangle-dns-list2.jpeg
No spaces!
Rob Sandling, BS:SWE, MCP
NexgenAppliances.com
Phone: 866-794-8879 x201
Email: support@nexgenappliances.com
None - here is the error along with the config pane (image is too large for the forum system)...Originally Posted by sky-knight
Last edited by czeus; 08-27-2021 at 06:54 PM.
Put the 8.8.8.8 as the secondary dns.
Thanks and I do understand that there is a secondary DNS field but this limits the user to having at most 2 DNS servers. Without getting into any debate re: needing 3+ DNS servers, this is a very common feature on FWs. For example, Checkpoint, Sophos (several devices), pfSense + its forks, etc., all have this.
Further, my goal is to determine if what UT published is accurate - that an IP list can populate the DNS server field much like is allowed in rule definitions.
Multiple entries on one field were never supported. Oddly the screen capture in the article shows the field red since it is an invalid format.
Attention: Support and help on the Untangle Forums is provided by
volunteers and community members like yourself.
If you need Untangle support please call or email support@untangle.com
Yeah I misread that. The GUI doesn't support more than 2 DNS Servers. However, the platform itself suffers no such limitation.
Untangle uses DNSMasq for DNS and DHCP services.
As such, you can simply add an arbitrary number of server= directives to supply DNSMasq with any number of DNS servers you require.
You can also push as many as you want via DHCP option 6, you just have to manually do so.
Config -> Network -> Advanced -> DHCP & DNS
You can put...
And DNSMasq will use them. It will have a line for each DNS IP configured on any WAN interface already as well.Code:server=1.1.1.1 server=2.2.2.2 server=3.3.3.3
The DNS Override box on each LAN's DHCP scope can accept a comma separated list already. So it's only adding additional DNS servers to the platform that requires the work around. Also, note... Linux doesn't care about interfaces when it comes to DNS servers, so you want to ensure all DNS servers are available via all WANs... if you fail to observe this you will have DNS timeouts. Because again... Linux.
Rob Sandling, BS:SWE, MCP
NexgenAppliances.com
Phone: 866-794-8879 x201
Email: support@nexgenappliances.com
Nor really should it...
Given this is Deb, I figured some CLI hack might be required but before heading down that road, I wanted to see if (a) it plain didn't work; and (b) if the UT articles are inaccurate which, as with the many UT wiki articles I've come across recently, appears to be the case...
As always, thanks for the info...
Posting Permissions
LinkBack URL
About LinkBacks
