This project provides tools to publish and resolve ordinary DNS zones in multicast DNS via Avahi. The avahi-publisher program downloads an entire DNS zone from the DNS server and publishes all its resource records to multicast DNS via the local Avahi daemon instance. The avahi-resolver program implements an extension module for the Unbound DNS resolver that can be used to lookup ordinary DNS queries in multicast DNS via Avahi.
The tools were originally designed to implement peer-to-peer DNS service in an OLSR-based wireless mesh network. The following diagram illustrates the architecture.
Each node runs a local DNS server serving a DNS zone shared by all nodes in the network. The DNS server has only a subset of the zone's records. An Avahi publisher process makes those records available to the network via Avahi Daemon. Multicast DNS packets from Avahi Daemon are propagated across the OLSR network by olsrd's multicast forwarding plugin (bmf).
DNS queries from clients arrive at Unbound recursive resolver which first attempts to resolve the query in the local DNS server. If no records are found, Unbound forwards the query to Avahi Resolver (Unbound Python extension module) which queries Avahi Daemon for records gathered from other (remote) nodes.
Avahi Publisher is a Python 3 program that downloads DNS records from the configured server and publishes them to Avahi Daemon. The programm communicates with the DNS server via the standard DNS protocol and with Avahi Daemon via its D-Bus API. Upon startup, the program downloads the entire DNS zone via DNS AXFR, submits its records to Avahi and goes to sleep. Upon receiving a DNS NOTIFY from the DNS server or when a timeout has been reached, the program re-downloads the zone and updates the records in Avahi to make sure they remain synchronized.
Avahi Publisher requires dbus-python and dnspython libraries. Make sure you have the two libraries installed and start the program as follows:
DOMAINS="foo.org bar.org" DNS_SERVER=127.0.0.1 python3 avahi-publisher.pyThe environment variable DOMAINS contains a space-delimited list of DNS zones you wish to synchronize. The variable DNS_SERVER should contain the IP address of the authoritative DNS server for the zones. Note that the DNS server must be configured to allow DNS AXFR requests from the Avahi Publisher's IP address. By default, Avahi Publisher re-downloads the zones every 60 seconds. The interval can be changed with the environment variable 'INTERVAL'.
If you wish to propagate DNS zone changes to Avahi immediately, configure your DNS server to send DNS NOTIFY to Avahi Publisher. By default, Avahi Publisher listens for DNS NOTIFY on 127.0.0.1:53535. The IP address and port number are configurable with environment variables LISTEN_ADDRESS and LISTEN_PORT. Upon receiving a DNS NOTIFY, Avahi Publisher synchronizes the DNS zone with Avahi immediately.
Avahi Resolver is a Python plugin for Unbound. To be able to use the plugin, you may need to recompile Unbound to enable Python 3 support as follows:
cd unbound
PYTHON_VERSION=3 ./configure --with-libevent --with-pythonmodule
make all
make installThe plugin is meant to be used as a fallback resolver that resolves DNS records in multicast DNS if the upstream DNS server cannot be reaached or provides no answer (NXDOMAIN). The following Unbound configuration file snippet shows how to enable the plugin:
server:
module-config: "validator python iterator"
num-threads: 32
cache-max-negative-ttl: 60
cache-max-ttl: 60
The behavior of the plugin can be controlled via a number of environment variables that are all documented in avahi-resolver.py.
The subdirectory docker provides Dockerfiles for Avahi Publisher and Unbound with Python 3 support enabled.