Enabling DNS Proxy or Relay
Context
The device can function as a DNS proxy or relay to forward DNS request and response packets between the DNS client and DNS server. DNS relay is similar to DNS proxy. The difference is that the DNS proxy searches for DNS entries saved in the local cache after receiving DNS query messages from DNS clients. The DNS relay, however, directly forwards DNS query messages to the DNS server, reducing the workload.
When the device functions as a DNS proxy or relay, pay attention to the following points:
- To use an IPv4 DNS server, configure the IPv4 DNS proxy or relay function.
- To use an IPv6 DNS server, configure the IPv6 DNS proxy or relay function.
- If both the IPv4 DNS proxy or relay and IPv6 DNS proxy or relay functions are configured, both the IPv4 DNS server and IPv6 DNS server can be used. When receiving a DNS request packet, the device determines whether to preferentially select the IPv4 DNS server or IPv6 DNS server based on the DNS query type. For example, when a device receives a class A query request, it preferentially selects the IPv4 DNS server. If the query on all IPv4 DNS servers times out or no IPv4 DNS server is configured, the device sends a query packet to the IPv6 DNS server.
Procedure
- Run system-view
The system view is displayed.
- Enable DNS proxy or relay.
- Run the dns proxy enable command to enable IPv4 DNS proxy, or run the dns relay enable command to enable IPv4 DNS relay.
- Run the dns proxy ipv6 enable command to enable IPv6 DNS proxy. Or run the dns relay ipv6 enable command to enable IPv6 DNS relay.
By default, DNS proxy or relay is disabled.
- (Optional) Run the dns proxy forward-any-response command to configure the DNS proxy to forward all response packets from the DNS server to DNS clients.
By default, the DNS proxy forwards only the successfully resolved response packets returned by the DNS server to DNS clients.
This function is supported by V600R007C20SPC500 and later versions.