ipn/ipnlocal: add arpa suffixes to MagicDNS for reverse lookups.

This used to not be necessary, because MagicDNS always did full proxying. But with split DNS, we need to know which names to route to our resolver, otherwise reverse lookups break. This captures the entire CGNAT range, as well as our Tailscale ULA. Signed-off-by: David Anderson <danderson@tailscale.com>
2024-11-29 13:05:46 +00:00 · 2021-04-20 18:05:17 -07:00 · 2021-04-20 18:05:17 -07:00 · 6fd9e28bd0
commit 6fd9e28bd0
parent 89c81c26c5
1 changed files with 13 additions and 1 deletions
--- a/ipn/ipnlocal/local.go
+++ b/ipn/ipnlocal/local.go
@ -1806,7 +1806,19 @@ func magicDNSRootDomains(nm *netmap.NetworkMap) []dnsname.FQDN {
 			// TODO: propagate error
 			return nil
 		}
-		return []dnsname.FQDN{fqdn}
+		ret := []dnsname.FQDN{
+			fqdn,
+			dnsname.FQDN("0.e.1.a.c.5.1.1.a.7.d.f.ip6.arpa."),
+		}
+		for i := 64; i <= 127; i++ {
+			fqdn, err = dnsname.ToFQDN(fmt.Sprintf("%d.100.in-addr.arpa.", i))
+			if err != nil {
+				// TODO: propagate error
+				continue
+			}
+			ret = append(ret, fqdn)
+		}
+		return ret
 	}
 	return nil
 }