From 60228c17ed08dc258a921a0de4899f6d9fa0de23 Mon Sep 17 00:00:00 2001 From: =?utf8?q?Zbigniew=20J=C4=99drzejewski-Szmek?= Date: Fri, 11 Jun 2021 09:13:25 +0200 Subject: [PATCH] man: clarify that global search domains apply to global servers, not all interfaces Fixes #19257. (cherry picked from commit dbb3b26f1b347f9d7b9fd56aa4ef4a92253e6f2e) --- man/systemd-resolved.service.xml | 15 ++++++++------- 1 file changed, 8 insertions(+), 7 deletions(-) diff --git a/man/systemd-resolved.service.xml b/man/systemd-resolved.service.xml index ed6214cd62..fc9a8405aa 100644 --- a/man/systemd-resolved.service.xml +++ b/man/systemd-resolved.service.xml @@ -131,13 +131,14 @@ Queries for the address records (A and AAAA) of single-label non-synthesized names are resolved via unicast DNS using search domains. For any interface which defines search domains, such - look-ups are routed to that interface, suffixed with each of the search domains defined on that - interface in turn. When global search domains are defined, such look-ups are routed to all interfaces, - suffixed by each of the global search domains in turn. Additionally, lookup of single-label names via - unicast DNS may be enabled with the ResolveUnicastSingleLabel=yes setting. The - details of which servers are queried and how the final reply is chosen are described below. Note that - this means that address queries for single-label names are never sent out to remote DNS servers by - default, and resoulution is only possible if search domains are defined. + look-ups are routed to the servers defined for that interface, suffixed with each of those search + domains. When global search domains are defined, such look-ups are routed to the global servers. For + each search domain, queries are performed by suffixing the name with each of the search domains in + turn. Additionally, lookup of single-label names via unicast DNS may be enabled with the + ResolveUnicastSingleLabel=yes setting. The details of which servers are queried and + how the final reply is chosen are described below. Note that this means that address queries for + single-label names are never sent out to remote DNS servers by default, and resoulution is only + possible if search domains are defined. Multi-label names with the domain suffix .local are resolved using MulticastDNS on all local interfaces where MulticastDNS is enabled. As with LLMNR, IPv4 address lookups -- 2.25.1