Project

General

Profile

Actions

Regression #11938

closed

DNS Resolver does not add PTR record for OpenVPN clients

Added by Viktor Gurov over 3 years ago. Updated about 3 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Viktor Gurov
Category:
OpenVPN
Target version:
Start date:
05/20/2021
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
22.01
Release Notes:
Default
Affected Version:
Affected Architecture:

Description

After changes in #11129 openvpn.learn-address.sh uses the 'unbound-control local_data' command to add client A/AAAA DNS records,
but it doesn't add PTR and "A/AAAA without domain part" records:

# do not restart unbound on connect, see https://redmine.pfsense.org/issues/11129
/usr/bin/su -m unbound -c "unbound-control -c /var/unbound/unbound.conf local_data ${CN}.${DOMAIN} ${ARECORD} ${IP}" 

it creates the correct 'openvpn.client.${IP}.conf' file:

# Add new local-data entry.
(
    echo "local-data-ptr: \"${IP} ${CN}.${DOMAIN}\"" &&
    echo "local-data: \"${CN}.${DOMAIN} ${ARECORD} ${IP}\"" &&
    echo "local-data: \"${CN} ${ARECORD} ${IP}\"" 
) > "${TMPCONF}" 

Actions

Also available in: Atom PDF