services/dns/Configuration.md
... ...
@@ -262,6 +262,34 @@ system {
262 262
## MS DNS
263 263
Add a "Conditional Forward" (de: "Bedingte Weiterleitung") for each of "dn42", "20.172.in-addr.arpa", "21.172.in-addr.arpa", "22.172.in-addr.arpa", "23.172.in-addr.arpa", "10.in-addr.arpa" using 172.20.0.53 as forwarder. Ignore the error message that the server is not authoritative.
264 264
265
+## systemd-resolved
266
+
267
+If you are using systemd-networkd and systemd-resolved in a version later then v240 you can set up split DNS by adding the dn42 anycast servers to a interface:
268
+
269
+```
270
+[Match]
271
+Name=dummy0
272
+
273
+[Network]
274
+ # don't try to resolve normal internet domains with theses resolvers
275
+DNSDefaultRoute=false
276
+# configure dn42 anycast servers
277
+DNS=fd42:d42:d42:54::1
278
+DNS=172.23.0.53
279
+DNS=fd42:d42:d42:53::1
280
+DNS=172.20.0.53
281
+
282
+# configure all relevant dn42 domains as route-only domains
283
+Domains=~dn42
284
+Domains=~20.172.in-addr.arpa
285
+Domains=~21.172.in-addr.arpa
286
+Domains=~22.172.in-addr.arpa
287
+Domains=~23.172.in-addr.arpa
288
+Domains=~10.in-addr.arpa
289
+Domains=~d.f.ip6.arpa
290
+```
291
+
292
+
265 293
# Resolver setup
266 294
267 295
Configuration of common resolver softwares to do full recursion DNS queries for `.dn42` (and reverse DNS) IPv4 and IPv6 anycast services.