From patchwork Sun Oct 18 15:50:52 2015
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
X-Patchwork-Id: 531952
Return-Path: <openwrt-devel-bounces@lists.openwrt.org>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Received: from arrakis.dune.hu (arrakis.dune.hu [78.24.191.176])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by ozlabs.org (Postfix) with ESMTPS id 5CD6A1402D5
	for <incoming@patchwork.ozlabs.org>;
	Mon, 19 Oct 2015 02:51:24 +1100 (AEDT)
Received: from arrakis.dune.hu (localhost [127.0.0.1])
	by arrakis.dune.hu (Postfix) with ESMTP id E26082844A6;
	Sun, 18 Oct 2015 17:49:34 +0200 (CEST)
X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on arrakis.dune.hu
X-Spam-Level: 
X-Spam-Status: No, score=-1.5 required=5.0 tests=BAD_ENC_HEADER,BAYES_00
	autolearn=unavailable version=3.3.2
Received: from arrakis.dune.hu (localhost [127.0.0.1])
	by arrakis.dune.hu (Postfix) with ESMTP id C7552284401
	for <openwrt-devel@lists.openwrt.org>;
	Sun, 18 Oct 2015 17:49:27 +0200 (CEST)
X-policyd-weight: NOT_IN_SBL_XBL_SPAMHAUS=-1.5 NOT_IN_SPAMCOP=-1.5
	NOT_IN_BL_NJABL=-1.5 HELO_IP_IN_CL_SUBNET=-1.2 (check from:
	.darbyshire-bryant. - helo:
	.emea01-db3-obe.outbound.protection.outlook. -
	helo-domain: .outlook.) FROM/MX_MATCHES_HELO(DOMAIN)=-2; rate: -7.7
Received: from emea01-db3-obe.outbound.protection.outlook.com
	(mail-db3on0094.outbound.protection.outlook.com [157.55.234.94])
	by arrakis.dune.hu (Postfix) with ESMTPS
	for <openwrt-devel@lists.openwrt.org>;
	Sun, 18 Oct 2015 17:49:25 +0200 (CEST)
Authentication-Results: spf=none (sender IP is )
	smtp.mailfrom=kevin@darbyshire-bryant.me.uk;
Received: from Animal.darbyshire-bryant.me.uk (188.221.218.142) by
	DB5PR07MB0935.eurprd07.prod.outlook.com (10.161.200.142) with
	Microsoft SMTP
	Server (TLS) id 15.1.300.14; Sun, 18 Oct 2015 15:50:58 +0000
From: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
To: <openwrt-devel@lists.openwrt.org>
Date: Sun, 18 Oct 2015 16:50:52 +0100
Message-ID: <1445183452-26518-1-git-send-email-kevin@darbyshire-bryant.me.uk>
X-Mailer: git-send-email 1.9.1
MIME-Version: 1.0
X-Originating-IP: [188.221.218.142]
X-ClientProxiedBy: VI1PR04CA0014.eurprd04.prod.outlook.com (25.163.3.24) To
	DB5PR07MB0935.eurprd07.prod.outlook.com (25.161.200.142)
X-Microsoft-Exchange-Diagnostics: 1; DB5PR07MB0935;
	2:wnqh9i3bJGt98ooWMMjtSLUiR5pjJ1ht8fMPZkxvVTfXoPaCBo0RIR0lxOJk0oym3p7T72mcO79O5XztK5H0scbUwyHUYa48e5EvMwZI8HVoeZiKNj4YrB6HooDbZL7ei9e1TwCNz3+IgvCEijAAzktwzU9WzLbmeCHcKvlBa4E=;
	3:STA8xr3IIO0rZLSULaQmPJGbhHuIOTojt/O3ggDbI+nYbGxpczrnduMIJq8d6m0TKCGIBnPJJRzmD1EL1GpkbmDOb/wo+HBSEwXFupv1GLCf/plkzWUlLzGJsCKwFrE77LrX2lwR9JqZYVWejmD6Lw==;
	25:idZV4nuWzd4ExdUm+rGvBlCcl5A762hXbpOM25c+baPgNDj59doDlOBDZdFntUZrOCEsPWeR0qJ/GuBKvaaCiMqw+6rW1qcPcTZaw0Un1yCvPkttdG+34/g+J/FhSSTC+s1TQiBkNOlrRIeCABD4kbksEaVGUE0EQzWhAHEWsiE14W338ROl9GAaggNFOnaF3fvxKWwoTDSgziCyBLSxvkVYFJgQ6//jnbsjnaiizV56zqgWx8Ew1zCEzTkMyn9VNDx2iygwcXgUukZ0rJOhEw==
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:DB5PR07MB0935;
X-Microsoft-Antispam-PRVS: 
 <DB5PR07MB0935291D47CB5918C4E85783A53B0@DB5PR07MB0935.eurprd07.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(159216200783502);
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0;
	RULEID:(601004)(2401047)(5005006)(520078)(8121501046)(3002001);
	SRVR:DB5PR07MB0935; BCL:0; PCL:0; RULEID:; SRVR:DB5PR07MB0935;
X-Microsoft-Exchange-Diagnostics: 1; DB5PR07MB0935;
	4:nV89iPc1gTj1Sb9APO5qBwfiKpn0vq3f5X38Di17IAlAXcbAw3HUJU41MNXkfwHjj0o93EVyH4U80RrLsRv/rNGQ9HEgX+yqT+n156JMaXlyciHzMFY3GamUk/KmTb9JrHZi0UGMzeVM0cmCVMzJpoUnXOu0A1HswhaDCeGZ6r4K86/sGzCrt566IHNpcDPEZ0ZKa6DqwJeOKEQi7w/zlS/c+pREy/Fjj4/GEuRuUyu6ktjcIfI5/TFukC19QTGHIuIQip74+KfpNKaiEP2sQI+f4uwB3pqhTCNe3vhfJh6i4BsAp8/HA+HMHWgV54r3MYeYNigl8dQcqo2CHFhJnrHcMgJSNNkNxd9AMdaC9Dc=
X-Forefront-PRVS: 07334CBCCD
X-Forefront-Antispam-Report: SFV:NSPM;
	SFS:(10009020)(6009001)(189002)(199003)(97736004)(42186005)(110136002)(50226001)(81156007)(5001960100002)(64706001)(66066001)(47776003)(92566002)(189998001)(5007970100001)(107886002)(33646002)(87976001)(36756003)(5003940100001)(77096005)(53416004)(48376002)(19580395003)(19580405001)(50466002)(2351001)(69596002)(86362001)(229853001)(5004730100002)(122386002)(74482002)(450100001)(50986999)(105586002)(101416001)(46102003)(106356001)(5008740100001)(40100003)(142933001)(4001430100001);
	DIR:OUT; SFP:1101; SCL:1; SRVR:DB5PR07MB0935;
	H:Animal.darbyshire-bryant.me.uk;
	FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
Received-SPF: None (protection.outlook.com: darbyshire-bryant.me.uk does not
	designate permitted sender hosts)
X-Microsoft-Exchange-Diagnostics: =?us-ascii?Q?1; DB5PR07MB0935;
	23:TWy8CBxmtq28KeVixUXHbRRDeBOuJVtvJ9hQFaz6J?=
	=?us-ascii?Q?NRfnFhzjcKbi6vpu600kBImu0w+lpwhG5IIAcGAc3XP3GzCKzyqPoxTan1E/?=
	=?us-ascii?Q?jqGiKSrjuBCRQc+BZkvgK5KotHvHXISzIX7DP7epJ+D42k/cCpddwjs9Wwas?=
	=?us-ascii?Q?7zEefLiqnE1QXEPLPjjsGX9mrBNlPD+4nYkG+X3pQaBba9juxFwWDTIMLczl?=
	=?us-ascii?Q?Kgvzw7o0VieHYfCvb7jLG1zLnmP80gDXhMCf/ka8gs4jWCq4LBxbii04dRcx?=
	=?us-ascii?Q?fV4Z8Sf1YJpqNVv3yN/Dm24bu9VyatuSHDsUQX4V4iP5dzBhUuqVZPgBOO6L?=
	=?us-ascii?Q?q4NCKx+t4BLnyhl5SlQh3Xx/DxDlAYkdB0d+4y8blFpQdoDqFgNjCzNFMeQH?=
	=?us-ascii?Q?VTcLK3FXp14LeM3CZ5TZHvgDqNnx/dHq5d4g1wNW0eiazrESETDG6Vw1Jc7m?=
	=?us-ascii?Q?jaaHkmgWkxi9Kf0XAM0mWw9LzJ3oLcoJBGX7bLQD+pkTcVHTffCa0rWwTuWZ?=
	=?us-ascii?Q?Cj58QWIyn5ZhZpRmXFspApXfVCo+7Z1ZuWpMLSjVV8EL1nyckU1YCLUUnG5D?=
	=?us-ascii?Q?blF2jfvdM6uLGhKsFqYUI8PyeIo1F4dcXojD0c1b/jezefCzLLHySW4++J5b?=
	=?us-ascii?Q?oavrAotUtXZizkjbJbOTrfokluk79cFM5VULx25zRz/bHnuJyBcFg4yat+cL?=
	=?us-ascii?Q?XvNEm5bHtICUipRgIqqNndl3rM2Y8bSV12kcY5JpyJgawkvq1fn07TGtvWwh?=
	=?us-ascii?Q?g/EM0NF3NHq18vJg5yFd81Nut2misUKXTS0R8Fj7byEwmn0g2ErzOz5Jjlf+?=
	=?us-ascii?Q?Zac65Qf4H/TjxrlGLr4WxvTo5rZjAdlEnTJxZ1Jl4XVSMXniRjQvu6hpTkvA?=
	=?us-ascii?Q?iB21dFQcqyYHTQY1LVeW0JrKSMdfaObiCW0h9KKMQI5h6L0dc3R3jlypL3TA?=
	=?us-ascii?Q?scyJ6Rg6uAm283unA6smLeAgqO+rPlS7Mnrz7P/AOiUBbCy7mnICf1d7hbcV?=
	=?us-ascii?Q?nnZq/RMiyk9/SznhUDUyxJdVK476ER9JS7b4h+0iXno9yXEZkBTAwAaDwrYi?=
	=?us-ascii?Q?WJAYEwfZiKCMNK+drdOown8PuotHvOIaMyuiM6NpMed+y4Zsq7D0Qc9TwQb5?=
	=?us-ascii?Q?7phay7M2B8hoyfYU08+1RNJ+aaD9414twsetnUvqSKbdWWvvWJUKA=3D=3D?=
X-Microsoft-Exchange-Diagnostics: 1; DB5PR07MB0935;
	5:+ZvmRtLZOBzaO3UWjd1nNpUYw6BCXzsZ+fAb7I2+nOSyDSIGk28MKgrwY5bgQ0hobmZCd4TSeZlBxeytsDkonvicj1NkRH9ncQzDlGY2U36E76e3sva8/SHNXRMNHv8ihezH98PFhHX1aQLVxC9htA==;
	24:+BWTS1b6Cjo4s4C5rr3l5S4jfmoF2pVMCKzndGfPe7ijFFpcwUXR0ROuRp5oCetRvEg7PtE/RAntoXbl5kARcMYOYlF+xgV6dZfSLPTuimI=;
	20:7khUpi5QRei0k1c97hk6XSCZ7/gQuV4H4MamcjQ+zOpm8d9APEBjrRfUKoH/pXB1Q5/jRm0tKbY+q19sExmGMw==
SpamDiagnosticOutput: 1:23
SpamDiagnosticMetadata: NSPM
X-OriginatorOrg: darbyshire-bryant.me.uk
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 18 Oct 2015 15:50:58.7685
	(UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB5PR07MB0935
Subject: [OpenWrt-Devel] [PATCH,
	v2] dnsmasq: prevent forwarding RFC6303 zones
X-BeenThere: openwrt-devel@lists.openwrt.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OpenWrt Development List <openwrt-devel.lists.openwrt.org>
List-Unsubscribe: 
 <https://lists.openwrt.org/cgi-bin/mailman/options/openwrt-devel>,
	<mailto:openwrt-devel-request@lists.openwrt.org?subject=unsubscribe>
List-Archive: <http://lists.openwrt.org/pipermail/openwrt-devel/>
List-Post: <mailto:openwrt-devel@lists.openwrt.org>
List-Help: <mailto:openwrt-devel-request@lists.openwrt.org?subject=help>
List-Subscribe: 
 <https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel>,
	<mailto:openwrt-devel-request@lists.openwrt.org?subject=subscribe>
Errors-To: openwrt-devel-bounces@lists.openwrt.org
Sender: "openwrt-devel" <openwrt-devel-bounces@lists.openwrt.org>

RFC6303 specifies reverse dns zones that ideally should not be forwarded
to upstream (root) servers and create unnecessary load upon them.

Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
---
 package/network/services/dnsmasq/files/dhcp.conf | 30 ++++++++++++++++++++++++
 1 file changed, 30 insertions(+)

diff --git a/package/network/services/dnsmasq/files/dhcp.conf b/package/network/services/dnsmasq/files/dhcp.conf
index 362b90a..5de885f 100644
--- a/package/network/services/dnsmasq/files/dhcp.conf
+++ b/package/network/services/dnsmasq/files/dhcp.conf
@@ -20,6 +20,36 @@ config dnsmasq
 	#list notinterface	lo
 	#list bogusnxdomain     '64.94.110.11'
 	option localservice	1  # disable to allow DNS requests from non-local subnets
+	list server '/0.in-addr.arpa/'
+	list server '/10.in-addr.arpa/'
+	list server '/127.in-addr.arpa/'
+	list server '/16.172.in-addr.arpa/'
+	list server '/17.172.in-addr.arpa/'
+	list server '/18.172.in-addr.arpa/'
+	list server '/19.172.in-addr.arpa/'
+	list server '/20.172.in-addr.arpa/'
+	list server '/21.172.in-addr.arpa/'
+	list server '/22.172.in-addr.arpa/'
+	list server '/23.172.in-addr.arpa/'
+	list server '/24.172.in-addr.arpa/'
+	list server '/25.172.in-addr.arpa/'
+	list server '/26.172.in-addr.arpa/'
+	list server '/27.172.in-addr.arpa/'
+	list server '/28.172.in-addr.arpa/'
+	list server '/29.172.in-addr.arpa/'
+	list server '/30.172.in-addr.arpa/'
+	list server '/31.172.in-addr.arpa/'
+	list server '/254.169.in-addr.arpa/'
+	list server '/2.0.192.in-addr.arpa/'
+	list server '/168.192.in-addr.arpa/'
+	list server '/100.51.198.in-addr.arpa/'
+	list server '/113.0.203.in-addr.arpa/'
+	list server '/255.255.255.255.in-addr.arpa/'
+	list server '/d.f.ip6.arpa/'
+	list server '/8.e.f.ip6.arpa/'
+	list server '/9.e.f.ip6.arpa/'
+	list server '/a.e.f.ip6.arpa/'
+	list server '/b.e.f.ip6.arpa/'
 
 config dhcp lan
 	option interface	lan