Server-side split-horizon DNS?
I have a small set of requirements which I'm having trouble figuring out how to implement, or if it is even possible.
The requirements are:
- Mobile clients (phones, laptops & tablets) always use NextDNS, even when connected to a network I don't control like 4G or some external wifi.
- When clients are connected to a network I control, they should resolve some internal hosts (e.g. someservice.mycompany.com) to their direct internal IP rather than the public IP that allows access over the internet.
Individually, each requirement is easy to satisfy, but I can't figure out how to solve them together.
To solve the first requirement I simply configure the device to directly use my NextDNS profile as its resolver, but this then means any DNS config I make for my own network such as Split Horizon or Conditional Profiles doesn't work because it is not using the local resolvers.
The only ways I can think of to have this work would be either
- If NextDNS supports some sort of source IP-based selection of which profile to use so I can set some custom Rewrites in my LAN profile or use the public IPs in the WAN profile
- If NextDNS supports some sort of source IP-based conditions for applying Rewrites so that the rewrite to override my internal sites to internal IPs only applies if the source IP is 1 of my networks
- If I can get some sort of script to run on each device that manually switches profiles when they join 1 of my LAN networks. Given some devices are Android & iOS I don't think that will be possible though.
6 replies
-
Thanks, I've already had a look at that and reference it in my question. The problem I'm having with it is that I can't figure out how to get it to work alongside having my mobile devices always use NextDNS even when not on my LAN. If I configure my devices to directly use DoH/DoT in their OS/browser config then they don't seem to use the local NextDNS CLI resolver on my LAN
Content aside
- 1 mth agoLast active
- 6Replies
- 70Views
-
2
Following