Bind9 wildcard to redirect ALL IP's

[5jgibbs]

Hi, we are working on a wireless project. All users who connect to the wireless go on vlan 2 by default. They get an IP address, and we want them to only go to a single site. This site will allow them to download some software. This software will install, allow them to authenticate and switches them to the right vlan. This software though, checks to see if they are up to date with there software. If not, we want to be able for them to get to these specific sites.

Here is what we have. When your looking at this example, keep this in mind. When you comment out update.microsoft.com, it works fine. But when you uncomment it, it will only resolve the specific items in DNS, and no longer resolve something like yahoo.com back to our specific server.

$TTL    604800
@       IN      SOA     @       cloudpath.example.com.  (
                        2010080940      ; Serial
                        7200            ; Refresh
                        120             ; Retry
                        2419200         ; Expire
                        604800)         ; Default TTL

@       IN      NS      cloudpath.example.com.
;--- Begin exceptions list ---
update.microsoft.com    IN      A       10.10.10.10
password.example.com    IN      A       72.*.*.*
cloudpath.example.com   IN      A       10.3.10.109
;--- End exceptions list ---

; Bulk redirect to the Cloudpath server for all other requests
*                       IN      A       10.3.10.109

I have replaced our domain name and public IP with junk to remain anonymous.

Again, if you comment out the update.microsoft.com, anything you go to besides the .example domains will get redirected to 10.3.10.109.

 

[elgrandeperro]

Using DNS for this is a poor choice. A port forward can do it trivially for port 80.