DNS: wildcard domains

domain-name-system subdomain wildcard

Yes, this works.


Yes, like Zoredache says, "this works".

There are some caveats though with wildcards that it's worth knowing:

  1. The wildcard matches one or more labels, so in your case foo.bar.domain.com will be matched by the wildcard, but bar.foo.domain.com will return NXDOMAIN because the presence of foo prevents any sub-domains of foo from matching

  2. The wildcard match is RRtype specific. However If the wildcard and override records don't have the same RRtype then the over-riding records will still "hide" the wildcard, but you get NODATA (i.e. no answer, rcode == NOERROR).

e.g.

$ORIGIN example.com.
*     IN A   192.168.1.1
foo   IN TXT "foo"

% dig @localhost foo.example.com. A
(abbreviated)
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 36960
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

Related

Does a High Variation in Ping Response Times Indicate a Potential Network Issue?
What causes hard disk failures?
how to imp whole database and replace current data?
Any issues with increasing maximum mailbox size for Exchange 2010?
Your thoughts on vendor requiring all users to login to a MS terminal server with the same username and password
How can email be resent that has been delivered to the Badmail folder in IIS?
MX Record Propagation
Practical uses of the immutable flag in Linux [closed]
Hardware vs software license keys in a VM environment
What's the common practice of when to update a soon expiring SSL certificate?
Create a block device in RAM
Why does `crontab -` remove crontab, and can it be cancelled?