diff options
author | Simon Kelley <simon@thekelleys.org.uk> | 2014-04-24 12:05:33 +0100 |
---|---|---|
committer | Simon Kelley <simon@thekelleys.org.uk> | 2014-04-24 12:05:33 +0100 |
commit | 7e22cf28f88f2c86b74158f01dad2292e095b296 (patch) | |
tree | f851a03504be854ab70b6d172e1a6912f4cb28bd | |
parent | 3b1b3e9d50fb74a5f92ef3c27ddcc313d8c6ed67 (diff) | |
download | dnsmasq-7e22cf28f88f2c86b74158f01dad2292e095b296.tar.gz |
Update doc.html - was positively antediluvian.v2.70
-rw-r--r-- | doc.html | 115 |
1 files changed, 41 insertions, 74 deletions
@@ -1,6 +1,6 @@ <HTML> <HEAD> -<TITLE> Dnsmasq - a DNS forwarder for NAT firewalls.</TITLE> +<TITLE> Dnsmasq - network services for small networks.</TITLE> <link rel="icon" href="http://www.thekelleys.org.uk/dnsmasq/images/favicon.ico"> </HEAD> @@ -11,82 +11,48 @@ <td align="middle" valign="middle"><h1>Dnsmasq</h1></td> <td align="right" valign="middle"><img border="0" src="http://www.thekelleys.org.uk/dnsmasq/images/icon.png" /></td></tr> </table> +Dnsmasq provides network infrastructure for small networks: DNS, DHCP, router advertisement and network boot. It is designed to be +lightweight and have a small footprint, suitable for resource constrained routers and firewalls. It has also been widely used +for tethering on smartphones and portable hotspots, and to support virtual networking in virtualisation frameworks. +Supported platforms include Linux (with glibc and uclibc), Android, *BSD, and Mac OS X. Dnsmasq is included in most +Linux distributions and the ports systems of FreeBSD, OpenBSD and NetBSD. Dnsmasq provides full IPv6 support. -Dnsmasq is a lightweight, easy to configure DNS forwarder and DHCP - server. It is designed to provide DNS and, optionally, DHCP, to a - small network. It can serve the names of local machines which are - not in the global DNS. The DHCP server integrates with the DNS - server and allows machines with DHCP-allocated addresses - to appear in the DNS with names configured either in each host or - in a central configuration file. Dnsmasq supports static and dynamic - DHCP leases and BOOTP/TFTP/PXE for network booting of diskless machines. <P> - Dnsmasq is targeted at home networks using NAT and -connected to the internet via a modem, cable-modem or ADSL -connection but would be a good choice for any smallish network (up to -1000 clients is known to work) where low -resource use and ease of configuration are important. -<P> -Supported platforms include Linux (with glibc and uclibc), Android, *BSD, -Solaris and Mac OS X. -Dnsmasq is included in at least the following Linux distributions: -Gentoo, Debian, Slackware, Suse, Fedora, -Smoothwall, IP-Cop, floppyfw, Firebox, LEAF, Freesco, fli4l, -CoyoteLinux, Endian Firewall and -Clarkconnect. It is also available as FreeBSD, OpenBSD and NetBSD ports and is used in -Linksys wireless routers (dd-wrt, openwrt and the stock firmware) and the m0n0wall project. +The DNS subsystem provides a local DNS server for the network, with forwarding of all query types to upstream recursive DNS servers and +cacheing of common record types (A, AAAA, CNAME and PTR, also DNSKEY and DS when DNSSEC is enabled). +<DIR> +<LI>Local DNS names can be defined by reading /etc/hosts, by importing names from the DHCP subsystem, or by configuration of a wide range of useful record types.</LI> +<LI>Upstream servers can be configured in a variety of convenient ways, including dynamic configuration as these change on moving upstream network. +<LI>Authoritative DNS mode allows local DNS names may be exported to zone in the global DNS. Dnsmasq acts as authoritative server for this zone, and also provides +zone transfer to secondaries for the zone, if required.</LI> +<LI>DNSSEC validation may be performed on DNS replies from upstream nameservers, providing security against spoofing and cache poisoning.</LI> +<LI>Specified sub-domains can be directed to their own upstream DNS servers, making VPN configuration easy.</LI> +<LI>Internationalised domain names are supported. +</DIR> <P> -Dnsmasq provides the following features: +The DHCP subsystem supports DHCPv4, DHCPv6, BOOTP and PXE. <DIR> - -<LI> -The DNS configuration of machines behind the firewall is simple and -doesn't depend on the details of the ISP's dns servers -<LI> -Clients which try to do DNS lookups while a modem link to the -internet is down will time out immediately. -</LI> -<LI> -Dnsmasq will serve names from the /etc/hosts file on the firewall -machine: If the names of local machines are there, then they can all -be addressed without having to maintain /etc/hosts on each machine. -</LI> -<LI> -The integrated DHCP server supports static and dynamic DHCP leases and -multiple networks and IP ranges. It works across BOOTP relays and -supports DHCP options including RFC3397 DNS search lists. -Machines which are configured by DHCP have their names automatically +<LI> Both static and dynamic DHCP leases are supported, along with stateless mode in DHCPv6.</LI> +<LI> The PXE system is a full PXE server, supporting netboot menus and multiple architecture support. It +includes proxy-mode, where the PXE system co-operates with another DHCP server.</LI> +<LI> There is a built in read-only TFTP server to support netboot.</LI> +<LI> Machines which are configured by DHCP have their names automatically included in the DNS and the names can specified by each machine or -centrally by associating a name with a MAC address in the dnsmasq -config file. -</LI> -<LI> -Dnsmasq caches internet addresses (A records and AAAA records) and address-to-name -mappings (PTR records), reducing the load on upstream servers and -improving performance (especially on modem connections). -</LI> -<LI> -Dnsmasq can be configured to automatically pick up the addresses of -its upstream nameservers from ppp or dhcp configuration. It will -automatically reload this information if it changes. This facility -will be of particular interest to maintainers of Linux firewall -distributions since it allows dns configuration to be made automatic. -</LI> -<LI> -On IPv6-enabled boxes, dnsmasq can both talk to upstream servers via IPv6 -and offer DNS service via IPv6. On dual-stack (IPv4 and IPv6) boxes it talks -both protocols and can even act as IPv6-to-IPv4 or IPv4-to-IPv6 forwarder. -</LI> -<LI> -Dnsmasq can be configured to send queries for certain domains to -upstream servers handling only those domains. This makes integration -with private DNS systems easy. -</LI> -<LI> -Dnsmasq supports MX and SRV records and can be configured to return MX records -for any or all local machines. -</LI> +centrally by associating a name with a MAC address or UID in the dnsmasq +configuration file.</LI> </DIR> +<P> +The Router Advertisement subsystem provides basic autoconfiguration for IPv6 hosts. It can be used stand-alone or in conjunction with DHCPv6. +<DIR> +<LI> The M and O bits are configurable, to control hosts' use of DHCPv6.</LI> +<LI> Router advertisements can include the RDNSS option.</LI> +<LI> There is a mode which uses name information from DHCPv4 configuration to provide DNS entries + for autoconfigured IPv6 addresses which would otherwise be anonymous.</LI> +</DIR> +<P> + +For extra compactness, unused features may be omitted at compile time. + <H2>Get code.</H2> @@ -102,7 +68,7 @@ the repo, or get a copy using git protocol with the command <PRE><TT>git clone git://thekelleys.org.uk/dnsmasq.git </TT></PRE> <H2>License.</H2> -Dnsmasq is distributed under the GPL. See the file COPYING in the distribution +Dnsmasq is distributed under the GPL, version 2 or version 3 at your discretion. See the files COPYING and COPYING-v3 in the distribution for details. <H2>Contact.</H2> @@ -110,11 +76,12 @@ There is a dnsmasq mailing list at <A HREF="http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss"> http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss</A> which should be the first location for queries, bugreports, suggestions etc. -Dnsmasq was mainly written and is maintained by Simon Kelley. You can contact me at <A +You can contact me at <A HREF="mailto:simon@thekelleys.org.uk">simon@thekelleys.org.uk</A>. <H2>Donations.</H2> -For most of its life, dnsmasq has been a spare-time project. These days I'm working on it as my main activity. +Dnsmasq is mainly written and maintained by Simon Kelley. For most of its life, dnsmasq has been a spare-time project. +These days I'm working on it as my main activity. I don't have an employer or anyone who pays me regularly to work on dnsmasq. If you'd like to make a contribution towards my expenses, please use the donation button below. <form action="https://www.paypal.com/cgi-bin/webscr" method="post" target="_top"> |