I have luci-app-https-dns-proxy configured to force_dns / Force Router DNS. At the same time, inside of my network, I am trying to use nsupdate to send a dynamic DNS update to an authoritative nameserver. The DNS update request times out[1]. I can confirm if I turn off the force_dns configuration my DNS update does make it through to the authoritative server.
Is there some configuration magic I can do to allow the https-dns-proxy to let these specific requests through? I am not seeing anything on the docs page but maybe I can cheese it with a firewall rule or something?
[1] If I do the “server” command in nsupdate to force the IP of the authoritative nameserver I instead get “dns_request_getresponse: expected a TSIG or SIG(0)” which I imagine is the result of the “reject rule” behavior from luci-app-https-dns-proxy