Hello,
I have very strange question.
I have DNS name srv1.example.com with private IP 10.0.0.1, and the same name with public routable address.
Generally srv1.example.com has two A records with private and public addresses. Such records will exists on cache only.
Can I reply to specific networks (lets say 1.0.0.0/8) with public routable address but for my private networks (i.e. 10/8 or 192.168/16) with private IP 10.0.0.1?
I think two approaches can be used for this:
-
Drop/Accept with the help of firewall filter (looks like it can be low performance)
-
Create Public IP on NSD server and overide this FQDN with private IP on Unbound
But maybe unbound has such built-in features for this or another better way.