Hey. Thanks for all the work on this. I have deployed 3 tsdnsproxy servers in my 3-site network. The 3 sites are connected via wireguard tunnels but i use tailscale for phones and other devices to remotely access the network. Up until now having a subnet router at each site created issues when the devices were on the local network as the traffic destined for the local network would route to tailscale, to the subnet router, and then to the device. Now i have each subnet router routing the 4via6 subnets instead and i use this to translate the dns to convert from the local IPv4 addresses to ts 4via6 addresses.
I am using technitium dns as the main dns server at each location. Technitium allows me to serve different records to different clients. I usually use this to serve the tailscale address to Tailscale clients and the normal ipv4 address to non-ts clients. Unfortunately this is where there is an issue. tsdnsproxy received the tailscale ipv4 address from the upstream server and instead of passing it along unchanged it translates it into a 4via6 address of the ts ip.
It would be great if there was a filter to either not apply translations to certain ip groups (and serve them unchanged) or to specify that translations should happen only for IPs in a certain range.
Even better would be if the rules could be specified by IP range instead of by domain (or both) as currently the match only happens by domain.
Hey. Thanks for all the work on this. I have deployed 3 tsdnsproxy servers in my 3-site network. The 3 sites are connected via wireguard tunnels but i use tailscale for phones and other devices to remotely access the network. Up until now having a subnet router at each site created issues when the devices were on the local network as the traffic destined for the local network would route to tailscale, to the subnet router, and then to the device. Now i have each subnet router routing the 4via6 subnets instead and i use this to translate the dns to convert from the local IPv4 addresses to ts 4via6 addresses.
I am using technitium dns as the main dns server at each location. Technitium allows me to serve different records to different clients. I usually use this to serve the tailscale address to Tailscale clients and the normal ipv4 address to non-ts clients. Unfortunately this is where there is an issue. tsdnsproxy received the tailscale ipv4 address from the upstream server and instead of passing it along unchanged it translates it into a 4via6 address of the ts ip.
It would be great if there was a filter to either not apply translations to certain ip groups (and serve them unchanged) or to specify that translations should happen only for IPs in a certain range.
Even better would be if the rules could be specified by IP range instead of by domain (or both) as currently the match only happens by domain.