Skip to content
Snippets Groups Projects
Verified Commit 692d89dc authored by Sheogorath's avatar Sheogorath :european_castle:
Browse files

docs: Add link to split-dns wikipedia entry

parent 93e0d703
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
docs/src/concepts/ingress-termination.md
+ 2
2
View file @ 692d89dc
...@@ -4,7 +4,7 @@ The Shivering-Isles Infrastructure, given it's a local-first infrastructure has ...@@ -4,7 +4,7 @@ The Shivering-Isles Infrastructure, given it's a local-first infrastructure has
## TCP Forwarding ## TCP Forwarding
A intentional design decision was to avoid split DNS. Given that all DNS is hosted on Cloudflare with full DNSSEC integration, as well as running devices with active DoT always connecting external DNS Server, made split-DNS a bad implementation. A intentional design decision was to avoid [split DNS](https://en.wikipedia.org/w/index.php?title=Split-horizon_DNS&oldid=1154237143). Given that all DNS is hosted on Cloudflare with full DNSSEC integration, as well as running devices with active DoT always connecting external DNS Server, made split-DNS a bad implementation.
At the same time, a simple rerouting of all traffic to the external IP would also be problematic, as it would require either a dedicated IP address or complex source-based routing to only route traffic for client networks while allowing VPN traffic to continue to flow to the VPS. At the same time, a simple rerouting of all traffic to the external IP would also be problematic, as it would require either a dedicated IP address or complex source-based routing to only route traffic for client networks while allowing VPN traffic to continue to flow to the VPS.
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment