Grid Properties > Queries > Advanced and then enable “Recursive ECS” and “ECS Forwarding”

Query Zone Permissions: By default, when ECS queries come into NIOS, NIOS will strip the ECS data when forwarding. To keep the ECS data when forwarding on a domain-by-domain basis, add the domain to the “Query Zone Permissions” and set “Permission” to allow. You have the ability to set the “Permission” to Deny but this doesn't block the domain from resolving, it just removes the ECS data from the domain (i.e. Deny NIOS the ability to forward ECS data“.

If you include +subnet=10.10.10.0/24 in a dig request and “Recursive ECS” is disabled, then you will get an answer for anything the NIOS is authoritative for but NOT for anything else (i.e. recursive queries will get refused).

If you include +subnet=10.10.10.0/24 in a dig request and “Recursive ECS” is enabled, but NOT “ECS Forwarding”, then you will get an answer for anything the NIOS is authoritative for but NOT for anything else (i.e. recursive queries will get refused).

If you include +subnet=10.10.10.0/24 in a dig request and “Recursive ECS” is enabled and “ECS Forwarding” is enabled, then you will get an answer for anything the NIOS is authoritative for and for anything else. However, you will need to put at least one domain in the “Query Zone Permissions”. For the “Query Zone Permissions” list, the domains that are in the list AND have “Permission” set to “Allow”, then queries to those domains will have the ECS data forwarded from NIOS to the next server. Any domain not in the list OR is in the list with “Permission” set to “Deny” will not have its ECS data forwarded.