ids-functions.pl: Fall back to $EXTERNAL_NET for DNS servers

When no DNS servers are configured (aka recursor mode), the
DNS servers that unbound will try to contact can be anywhere.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>

diff --git a/config/cfgroot/ids-functions.pl b/config/cfgroot/ids-functions.pl
index 186c39ac78f27fb0f7165895248287d012824674..af8a927e0bb04404338c4b166fc5688fdee783c9 100644 (file)
--- a/config/cfgroot/ids-functions.pl
+++ b/config/cfgroot/ids-functions.pl
@@ -718,10 +718,7 @@ sub generate_dns_servers_file() {
        if (@nameservers) {
                $line = join(",", @nameservers);
        } else {
-               # The responsible DNS servers on red are directly used, and because we are not able
-               # to specify each single DNS server address here, we currently have to thread each
-               # address which is not part of the HOME_NET as possible DNS server.
-               $line = "!\$HOME_NET";
+               $line = "\$EXTERNAL_NET";
        }
 
        # Open file to store the used DNS server addresses.