[Pkg-libvirt-maintainers] Bug#690540: libvirt-bin: dnsmasq should not use option --bind-interfaces

Guido Günther agx at sigxcpu.org
Sat Sep 5 13:16:47 UTC 2015


Hi Luca,
sorry for not following up earlier...

On Tue, Jul 01, 2014 at 10:34:47AM +0200, Luca Capello wrote:
[..snip..]
> # cat /var/lib/libvirt/dnsmasq/default.conf 
> ##WARNING:  THIS IS AN AUTO-GENERATED FILE. CHANGES TO IT ARE LIKELY
> TO BE
> ##OVERWRITTEN AND LOST.  Changes to this configuration should be made
> using:
> ##    virsh net-edit default
> ## or other application using the libvirt API.
> ##
> ## dnsmasq conf file created by libvirt
> strict-order
> pid-file=/var/run/libvirt/network/default.pid
> except-interface=lo


> bind-interfaces
> listen-address=192.168.122.1

But these two lines mean "bind to the interface with address
192.168.122.1 and only this interface" - at least that is the
intention. Isn't that what one would expect?  This will make sure
dnsmasq does not interfere with other interfaces.

Using things like bind-dynamic would only make things worse since we'd
then bind to new interfaces which another (not libvirt managed) dnsmasq,
bind or whatever instance would listen to.

Cheers,
 -- Guido



More information about the Pkg-libvirt-maintainers mailing list