Use DNS forwarding if you want your router to function as a DNS server for local networks. The minimal information required for DNS Forwarding to work is:
- Networks from which the router would accept DNS queries.
- Router IP address, or addresses, in which the router would accept the DNS queries.
- Name server's IP address that the router would use to forward DNS queries.
Commands to be executed on VyOs router to enable DNS Forwarding:
vyos@vyos-rtr# set service dns forwarding allow-from <IPv4 network | IPv6 network>
vyos@vyos-rtr# set service dns forwarding listen-address <IPv4 address | IPv6 address>
vyos@vyos-rtr# set service dns forwarding name-server <IPv4 address | IPv6 address>Example1: router with LAN network 192.168.1.0/24 and IP 192.168.1.1. Also, 192.168.2.0/24 and IP 192.168.2.1/24 assigned to another VLAN, and forward DNS queries to Googles servers
vyos@vyos-rtr# set service dns forwarding allow-from 192.168.0.0/16
vyos@vyos-rtr# set service dns forwarding listen-address 192.168.1.1
vyos@vyos-rtr# set service dns forwarding listen-address 192.168.2.1
vyos@vyos-rtr# set service dns forwarding name-server 8.8.8.8
vyos@vyos-rtr# set service dns forwarding name-server 2001:4860:4860::8888If forwarding for specific domains is required, use next command:
vyos@vyos-rtr# set service dns forwarding domain <domain> server <IPv4 address | IPv6 address>For example, forwarding domain example.com queries to name server 192.168.2.20:
vyos@vyos-rtr# set service dns forwarding domain example.com server 192.168.2.20