BIND doesn't listen to other loopback addresses
Bjørn Mork
bjorn at mork.no
Sun Jul 6 18:10:58 UTC 2025
Bagas Sanjaya <bagasdotme at gmail.com> writes:
> Here in my case, I was expecting BIND to listen to 127.0.0.53 as
> separate address, just like in similar applications (systemd-resolved,
> dnsdist, etc).
You do need to add the address to an interface, but you don't need to
add a new dummy interface. This will make your config work too:
ip addr add 127.0.0.53 dev lo
It doesn't matter that lo already is configured with 127.0.0.1/8. You
can still add specific /32s within the same prefix.
I understand that this behaviour was unexpected, but the acl
functionality of listen-on has some advantages too. Makes it easier to
dynamically add or remove addresses. Or sharing configs among servers
listening to different addresses, while still having the ability to
filter out unwanted addresses.
Bjørn
More information about the bind-users
mailing list