plugin/rewrite/README.md

# rewrite

*rewrite* performs internal message rewriting.

Rewrites are invisible to the client. There are simple rewrites (fast) and complex rewrites
(slower), but they're powerful enough to accommodate most dynamic back-end applications.

## Syntax

~~~
rewrite [continue|stop] FIELD FROM TO
~~~

* **FIELD** is (`type`, `class`, `name`, ...)
* **FROM** is the exact name of type to match
* **TO** is the destination name or type to rewrite to

When the FIELD is `type` and FROM is (`A`, `MX`, etc.), the type of the message will be rewritten;
e.g., to rewrite ANY queries to HINFO, use `rewrite type ANY HINFO`.

When the FIELD is `class` and FROM is (`IN`, `CH`, or `HS`) the class of the message will be
rewritten; e.g., to rewrite CH queries to IN use `rewrite class CH IN`.

When the FIELD is `name` the query name in the message is rewritten; this
needs to be a full match of the name, e.g., `rewrite name miek.nl example.org`.

When the FIELD is `edns0` an EDNS0 option can be appended to the request as described below.

If you specify multiple rules and an incoming query matches on multiple rules, the rewrite
will behave as following
* `continue` will continue apply the next rule in the rule list. 
* `stop` will consider the current rule is the last rule and will not continue.  Default behaviour
for not specifying this rule processing mode is `stop`

## EDNS0 Options

Using FIELD edns0, you can set, append, or replace specific EDNS0 options on the request.

* `replace` will modify any matching (what that means may vary based on EDNS0 type) option with the specified option
* `append` will add the option regardless of what options already exist
* `set` will modify a matching option or add one if none is found

Currently supported are `EDNS0_LOCAL`, `EDNS0_NSID` and `EDNS0_SUBNET`.

### `EDNS0_LOCAL`

This has two fields, code and data. A match is defined as having the same code. Data may be a string or a variable.  

* A string data can be treated as hex if it starts with `0x`. Example:

~~~ corefile
. {
    rewrite edns0 local set 0xffee 0x61626364
    whoami
}
~~~

rewrites the first local option with code 0xffee, setting the data to "abcd". Equivalent:

~~~ corefile
. {
    rewrite edns0 local set 0xffee abcd
}
~~~

* A variable data is specified with a pair of curly brackets `{}`. Following are the supported variables:
    * {qname}
    * {qtype}
    * {client_ip}
    * {client_port}
    * {protocol}
    * {server_ip}
    * {server_port}

Example:

~~~
rewrite edns0 local set 0xffee {client_ip}
~~~

### `EDNS0_NSID`

This has no fields; it will add an NSID option with an empty string for the NSID. If the option already exists
and the action is `replace` or `set`, then the NSID in the option will be set to the empty string.

### `EDNS0_SUBNET`

This has two fields,  IPv4 bitmask length and IPv6 bitmask length. The bitmask
length is used to extract the client subnet from the source IP address in the query. 

Example:

~~~
rewrite edns0 subnet set 24 56
~~~

* If the query has source IP as IPv4, the first 24 bits in the IP will be the network subnet.
* If the query has source IP as IPv6, the first 56 bits in the IP will be the network subnet.

### Name Field Rewrites

The `rewrite` plugin offers the ability to match on the name in the question section of
a DNS request. The match could be exact, substring, or based on a prefix, suffix, or regular
expression.

The syntax for the name re-writing is as follows:

```
rewrite [continue|stop] name [exact|prefix|suffix|substring|regex] STRING STRING
```

The match type, i.e. `exact`, `substring`, etc., triggers re-write: 

* **exact** (default): on exact match of the name in the question section of a request
* **substring**: on a partial match of the name in the question section of a request
* **prefix**: when the name begins with the matching string
* **suffix**: when the name ends with the matching string
* **regex**: when the name in the question section of a request matches a regular expression

If the match type is omitted, the `exact` match type is being assumed.

The following instruction allows re-writing the name in the query that
contains `service.us-west-1.example.org` substring.

```
rewrite name substring service.us-west-1.example.org service.us-west-1.consul
```

Thus:
* Incoming Request Name: `ftp.service.us-west-1.example.org`
* Re-written Request Name: `ftp.service.us-west-1.consul`

The following instruction uses regular expressions. The name in a request
matching `(.*)-(us-west-1)\.example\.org` regular expression is being replaces with
`{1}.service.{2}.consul`, where `{1}` and `{2}` are regular expression match groups.

```
rewrite name regex (.*)-(us-west-1)\.example\.org {1}.service.{2}.consul
```

Thus:
* Incoming Request Name: `ftp-us-west-1.example.org`
* Re-written Request Name: `ftp.service.us-west-1.consul`
Dump rewrite.md here 2016-03-20 09:40:35 +00:00			`# rewrite`

Fix all READMEs and some other fluff (#788) 2017-07-24 08:24:53 -07:00			`rewrite performs internal message rewriting.`

			`Rewrites are invisible to the client. There are simple rewrites (fast) and complex rewrites`
			`(slower), but they're powerful enough to accommodate most dynamic back-end applications.`
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
			`## Syntax`

			`~~~`
Modify the rewrite plugin to write multiple EDNS0 options (#936) (#1096) * Add processing mode * Add processing mode * Update UTs * Update README.md * Change to use the constant Stop * Fix README per review comments 2017-09-20 13:06:53 -07:00			`rewrite [continue\|stop] FIELD FROM TO`
Dump rewrite.md here 2016-03-20 09:40:35 +00:00			`~~~`

Add field keywords to rewrite middleware (#497) * Require Field for rewrite rules * review feedback changes * fix ut * fix typo, add warning message 2017-02-07 16:53:16 -05:00			* FIELD is (`type`, `class`, `name`, ...)
docs: rewrite using manpage style (#327) This still needs cleanup, but this is a first pass the cleans some cruft and documents our style (in middleware.md) and makes all the docs match that style. 2016-10-10 20:13:22 +01:00			`* FROM is the exact name of type to match`
			`* TO is the destination name or type to rewrite to`
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
Add field keywords to rewrite middleware (#497) * Require Field for rewrite rules * review feedback changes * fix ut * fix typo, add warning message 2017-02-07 16:53:16 -05:00			When the FIELD is `type` and FROM is (`A`, `MX`, etc.), the type of the message will be rewritten;
			e.g., to rewrite ANY queries to HINFO, use `rewrite type ANY HINFO`.
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
Add field keywords to rewrite middleware (#497) * Require Field for rewrite rules * review feedback changes * fix ut * fix typo, add warning message 2017-02-07 16:53:16 -05:00			When the FIELD is `class` and FROM is (`IN`, `CH`, or `HS`) the class of the message will be
			rewritten; e.g., to rewrite CH queries to IN use `rewrite class CH IN`.
Cleanup docs and the chaos middleware Make the CH middleware actually work. Needs a bit of a hack to route the fake version.bind and friends zone to the correct handler. Fiddle with the order in directive.go so that CH queries get logged as well. Secondly add class rewriting to the rewrite middleware handler and also log the class by default. 2016-04-04 15:45:17 +01:00
Add field keywords to rewrite middleware (#497) * Require Field for rewrite rules * review feedback changes * fix ut * fix typo, add warning message 2017-02-07 16:53:16 -05:00			When the FIELD is `name` the query name in the message is rewritten; this
			needs to be a full match of the name, e.g., `rewrite name miek.nl example.org`.
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
Rewrite edns0 (#561) * Add edns0 code rewrite * check arg count * change `new`; set EDNS0 if request doesn't have it set * change set to replace_or_append * change to append_or_replace * return error in new * update documents * fixt UT * return error * go fmt * Rework for more general EDNS0 use Also changed how rules are created and validated. Implements EDNS0 NSID in addition to local. * go fmt * README updates, NSID tests and fixes * gofmt -s -w * Fix tests for rewrite syntax change * Add tests, fix error message * Review nits * Missed on nit * More tests, integration test, fix edns0 parse issue * Fix README, use RewriteIgnored * go fmt 2017-03-06 16:32:17 -05:00			When the FIELD is `edns0` an EDNS0 option can be appended to the request as described below.

Modify the rewrite plugin to write multiple EDNS0 options (#936) (#1096) * Add processing mode * Add processing mode * Update UTs * Update README.md * Change to use the constant Stop * Fix README per review comments 2017-09-20 13:06:53 -07:00			`If you specify multiple rules and an incoming query matches on multiple rules, the rewrite`
			`will behave as following`
			* `continue` will continue apply the next rule in the rule list.
			* `stop` will consider the current rule is the last rule and will not continue. Default behaviour
			for not specifying this rule processing mode is `stop`
Allow rewriting of the the name of the query as well. And improve the docs a little. 2016-03-20 10:44:03 +00:00
Rewrite edns0 (#561) * Add edns0 code rewrite * check arg count * change `new`; set EDNS0 if request doesn't have it set * change set to replace_or_append * change to append_or_replace * return error in new * update documents * fixt UT * return error * go fmt * Rework for more general EDNS0 use Also changed how rules are created and validated. Implements EDNS0 NSID in addition to local. * go fmt * README updates, NSID tests and fixes * gofmt -s -w * Fix tests for rewrite syntax change * Add tests, fix error message * Review nits * Missed on nit * More tests, integration test, fix edns0 parse issue * Fix README, use RewriteIgnored * go fmt 2017-03-06 16:32:17 -05:00			`## EDNS0 Options`
Add field keywords to rewrite middleware (#497) * Require Field for rewrite rules * review feedback changes * fix ut * fix typo, add warning message 2017-02-07 16:53:16 -05:00
Rewrite edns0 (#561) * Add edns0 code rewrite * check arg count * change `new`; set EDNS0 if request doesn't have it set * change set to replace_or_append * change to append_or_replace * return error in new * update documents * fixt UT * return error * go fmt * Rework for more general EDNS0 use Also changed how rules are created and validated. Implements EDNS0 NSID in addition to local. * go fmt * README updates, NSID tests and fixes * gofmt -s -w * Fix tests for rewrite syntax change * Add tests, fix error message * Review nits * Missed on nit * More tests, integration test, fix edns0 parse issue * Fix README, use RewriteIgnored * go fmt 2017-03-06 16:32:17 -05:00			`Using FIELD edns0, you can set, append, or replace specific EDNS0 options on the request.`
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
Rewrite edns0 (#561) * Add edns0 code rewrite * check arg count * change `new`; set EDNS0 if request doesn't have it set * change set to replace_or_append * change to append_or_replace * return error in new * update documents * fixt UT * return error * go fmt * Rework for more general EDNS0 use Also changed how rules are created and validated. Implements EDNS0 NSID in addition to local. * go fmt * README updates, NSID tests and fixes * gofmt -s -w * Fix tests for rewrite syntax change * Add tests, fix error message * Review nits * Missed on nit * More tests, integration test, fix edns0 parse issue * Fix README, use RewriteIgnored * go fmt 2017-03-06 16:32:17 -05:00			* `replace` will modify any matching (what that means may vary based on EDNS0 type) option with the specified option
			* `append` will add the option regardless of what options already exist
			* `set` will modify a matching option or add one if none is found
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
Add EDNS0_SUBNET rewrite (#1022) * Add EDNS0_SUBNET rewrite * Fix review comments * Update comment * Fix according to review comments * Add ResponseWriter6 instead of parameterized the existing ResponseWriter 2017-09-08 13:36:09 -07:00			Currently supported are `EDNS0_LOCAL`, `EDNS0_NSID` and `EDNS0_SUBNET`.
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
Rewrite edns0 (#561) * Add edns0 code rewrite * check arg count * change `new`; set EDNS0 if request doesn't have it set * change set to replace_or_append * change to append_or_replace * return error in new * update documents * fixt UT * return error * go fmt * Rework for more general EDNS0 use Also changed how rules are created and validated. Implements EDNS0 NSID in addition to local. * go fmt * README updates, NSID tests and fixes * gofmt -s -w * Fix tests for rewrite syntax change * Add tests, fix error message * Review nits * Missed on nit * More tests, integration test, fix edns0 parse issue * Fix README, use RewriteIgnored * go fmt 2017-03-06 16:32:17 -05:00			### `EDNS0_LOCAL`
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
Add set EDNS0 with variable substitution (#937) * Add set EDNS0 with variable substitution * Change variable from $ to {}. Un-export constants * Update README * Change getRuleData() to ruleData(); Change to use string match from regexp 2017-08-24 09:34:07 -07:00			`This has two fields, code and data. A match is defined as having the same code. Data may be a string or a variable.`

			* A string data can be treated as hex if it starts with `0x`. Example:
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
doc update (#1140) * doc update Go through all README and fix mistakes, extend example and let more corefile snippets be test for validity. * Cant use spefic addr in test 2017-10-10 09:39:35 +02:00			`~~~ corefile`
			`. {`
			`rewrite edns0 local set 0xffee 0x61626364`
			`whoami`
			`}`
Dump rewrite.md here 2016-03-20 09:40:35 +00:00			`~~~`

Rewrite edns0 (#561) * Add edns0 code rewrite * check arg count * change `new`; set EDNS0 if request doesn't have it set * change set to replace_or_append * change to append_or_replace * return error in new * update documents * fixt UT * return error * go fmt * Rework for more general EDNS0 use Also changed how rules are created and validated. Implements EDNS0 NSID in addition to local. * go fmt * README updates, NSID tests and fixes * gofmt -s -w * Fix tests for rewrite syntax change * Add tests, fix error message * Review nits * Missed on nit * More tests, integration test, fix edns0 parse issue * Fix README, use RewriteIgnored * go fmt 2017-03-06 16:32:17 -05:00			`rewrites the first local option with code 0xffee, setting the data to "abcd". Equivalent:`
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
doc update (#1140) * doc update Go through all README and fix mistakes, extend example and let more corefile snippets be test for validity. * Cant use spefic addr in test 2017-10-10 09:39:35 +02:00			`~~~ corefile`
			`. {`
			`rewrite edns0 local set 0xffee abcd`
			`}`
Dump rewrite.md here 2016-03-20 09:40:35 +00:00			`~~~`

Add set EDNS0 with variable substitution (#937) * Add set EDNS0 with variable substitution * Change variable from $ to {}. Un-export constants * Update README * Change getRuleData() to ruleData(); Change to use string match from regexp 2017-08-24 09:34:07 -07:00			* A variable data is specified with a pair of curly brackets `{}`. Following are the supported variables:
			`* {qname}`
			`* {qtype}`
			`* {client_ip}`
			`* {client_port}`
			`* {protocol}`
			`* {server_ip}`
			`* {server_port}`

			`Example:`

			`~~~`
			`rewrite edns0 local set 0xffee {client_ip}`
			`~~~`

Rewrite edns0 (#561) * Add edns0 code rewrite * check arg count * change `new`; set EDNS0 if request doesn't have it set * change set to replace_or_append * change to append_or_replace * return error in new * update documents * fixt UT * return error * go fmt * Rework for more general EDNS0 use Also changed how rules are created and validated. Implements EDNS0 NSID in addition to local. * go fmt * README updates, NSID tests and fixes * gofmt -s -w * Fix tests for rewrite syntax change * Add tests, fix error message * Review nits * Missed on nit * More tests, integration test, fix edns0 parse issue * Fix README, use RewriteIgnored * go fmt 2017-03-06 16:32:17 -05:00			### `EDNS0_NSID`
Dump rewrite.md here 2016-03-20 09:40:35 +00:00
Rewrite edns0 (#561) * Add edns0 code rewrite * check arg count * change `new`; set EDNS0 if request doesn't have it set * change set to replace_or_append * change to append_or_replace * return error in new * update documents * fixt UT * return error * go fmt * Rework for more general EDNS0 use Also changed how rules are created and validated. Implements EDNS0 NSID in addition to local. * go fmt * README updates, NSID tests and fixes * gofmt -s -w * Fix tests for rewrite syntax change * Add tests, fix error message * Review nits * Missed on nit * More tests, integration test, fix edns0 parse issue * Fix README, use RewriteIgnored * go fmt 2017-03-06 16:32:17 -05:00			`This has no fields; it will add an NSID option with an empty string for the NSID. If the option already exists`
			and the action is `replace` or `set`, then the NSID in the option will be set to the empty string.
Add EDNS0_SUBNET rewrite (#1022) * Add EDNS0_SUBNET rewrite * Fix review comments * Update comment * Fix according to review comments * Add ResponseWriter6 instead of parameterized the existing ResponseWriter 2017-09-08 13:36:09 -07:00
			### `EDNS0_SUBNET`

			`This has two fields, IPv4 bitmask length and IPv6 bitmask length. The bitmask`
			`length is used to extract the client subnet from the source IP address in the query.`

			`Example:`

			`~~~`
doc update (#1140) * doc update Go through all README and fix mistakes, extend example and let more corefile snippets be test for validity. * Cant use spefic addr in test 2017-10-10 09:39:35 +02:00			`rewrite edns0 subnet set 24 56`
Add EDNS0_SUBNET rewrite (#1022) * Add EDNS0_SUBNET rewrite * Fix review comments * Update comment * Fix according to review comments * Add ResponseWriter6 instead of parameterized the existing ResponseWriter 2017-09-08 13:36:09 -07:00			`~~~`

			`* If the query has source IP as IPv4, the first 24 bits in the IP will be the network subnet.`
			`* If the query has source IP as IPv6, the first 56 bits in the IP will be the network subnet.`
plugin/rewrite: regular expression and substring match/replace (#1296) (#1297) 2017-12-13 11:31:19 -05:00
			`### Name Field Rewrites`

			The `rewrite` plugin offers the ability to match on the name in the question section of
			`a DNS request. The match could be exact, substring, or based on a prefix, suffix, or regular`
			`expression.`

			`The syntax for the name re-writing is as follows:`

			```
			`rewrite [continue\|stop] name [exact\|prefix\|suffix\|substring\|regex] STRING STRING`
			```

			The match type, i.e. `exact`, `substring`, etc., triggers re-write:

			`* exact (default): on exact match of the name in the question section of a request`
			`* substring: on a partial match of the name in the question section of a request`
			`* prefix: when the name begins with the matching string`
			`* suffix: when the name ends with the matching string`
			`* regex: when the name in the question section of a request matches a regular expression`

			If the match type is omitted, the `exact` match type is being assumed.

			`The following instruction allows re-writing the name in the query that`
			contains `service.us-west-1.example.org` substring.

			```
			`rewrite name substring service.us-west-1.example.org service.us-west-1.consul`
			```

			`Thus:`
			* Incoming Request Name: `ftp.service.us-west-1.example.org`
			* Re-written Request Name: `ftp.service.us-west-1.consul`

			`The following instruction uses regular expressions. The name in a request`
			matching `(.*)-(us-west-1)\.example\.org` regular expression is being replaces with
			`{1}.service.{2}.consul`, where `{1}` and `{2}` are regular expression match groups.

			```
			`rewrite name regex (.*)-(us-west-1)\.example\.org {1}.service.{2}.consul`
			```

			`Thus:`
			* Incoming Request Name: `ftp-us-west-1.example.org`
			* Re-written Request Name: `ftp.service.us-west-1.consul`