Re: [Dnsmasq-discuss] cname ghs.googlehosted.com.. possible?

2014-02-11 Thread Simon Kelley
On 11/02/14 22:21, B. Cook wrote: It seems that as of 2.68 the proper way to do a cname entry is to have the entry in the format of: (man page..) cname=cname,target Is would seem that a target of ghs.googlehosted.com could not be properly satisfied at this time. From the man page There

Re: [Dnsmasq-discuss] Dnsmasq wont recieve DHCP request messaegs

2014-02-09 Thread Simon Kelley
On 09/02/14 07:25, Kiazada Dany-GVN438 wrote: Hi, I’m using the program as a DHCP server for a Linux machine. The server needs to toggle between two different subnets, with different GW (on the same interface – ‘br0’), and assign an IP for a windows PC. So for example upon power up the DHCP

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-07 Thread Simon Kelley
On 07/02/14 08:21, Jan-Piet Mens wrote: Answering my previous question, this behaviour is specified in RFC 6840 para 5.7. Code changes to implement it are in git now. Have they been comitted? ;-) No visible change here ... Ooops. Try now.

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-07 Thread Simon Kelley
On 07/02/14 09:25, Jan-Piet Mens wrote: So scrap this report for now, we should check, however, if dnsmasq forwarding to a second instance of itself works properly. :) It does! :-) Many thanks all for your thorough testing. I appreciate it! Simon. -JP

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-06 Thread Simon Kelley
On 05/02/14 23:35, Eugene Rudoy wrote: Hi Simon, On Thu, Feb 6, 2014 at 12:23 AM, Eugene Rudoy gene.de...@gmail.com wrote: hmm, tried all above, still INSECURE --dnssec-debug doesn't make log more verbose or provide any additional information. Is it the expected behavior? It does two

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-06 Thread Simon Kelley
On 05/02/14 23:23, Eugene Rudoy wrote: Hi Simon, On Wed, Feb 5, 2014 at 9:39 AM, Simon Kelley si...@thekelleys.org.uk wrote: Most zones (including those you use as examples) are not (yet) signed, so that's the expected result. Try paypal.com ietf.org www.dnssec-failed.org hmm, tried all

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-06 Thread Simon Kelley
On 06/02/14 10:17, Henk Jan Agteresch wrote: I compiled 2.69test6 on armv5tel (linksys 4200v2 running debian) using dpkg-buildpackage. dnsmasq crashes on the first received query with *** stack smashing detected ***: /usr/sbin/dnsmasq terminated Recompiled with CFLAGS=-g and started under gdb.

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-06 Thread Simon Kelley
On 06/02/14 08:15, Jan-Piet Mens wrote: 1. I am getting different results on two subsequent identical queries WRT RRSIG record and AD flag. The second answer comes from the cache, and the D0 bit is not set in the query, so the answer doesn't have the AD flag or RRSIG, if you add +dnssec to

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-06 Thread Simon Kelley
On 05/02/14 08:58, Matthias Andree wrote: Am 05.02.2014 09:46, schrieb Simon Kelley: The second answer comes from the cache, and the D0 bit is not set in the query, so the answer doesn't have the AD flag or RRSIG, if you add +dnssec to the dig command you should see both in replies from

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-06 Thread Simon Kelley
OK, I can reproduce this on the Beaglebone. Investigation in progress... Cheers, Simon. On 06/02/14 10:17, Henk Jan Agteresch wrote: I compiled 2.69test6 on armv5tel (linksys 4200v2 running debian) using dpkg-buildpackage. dnsmasq crashes on the first received query with *** stack

Re: [Dnsmasq-discuss] dhcp-pd, and autoassigned internal interfaces issues

2014-02-06 Thread Simon Kelley
On 23/01/14 02:31, Vladislav Grishenko wrote: Hi Simon, -if (ifa-ifa_flags IFA_F_PERMANENT) +if (!(ifa-ifa_flags IFA_F_TEMPORARY)) IFA_F_TEMPORARY flag used only if privacy extensions are enabled in kernel, in all other cases it makes no sense and will not be there. That means

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-06 Thread Simon Kelley
On 06/02/14 10:17, Henk Jan Agteresch wrote: I compiled 2.69test6 on armv5tel (linksys 4200v2 running debian) using dpkg-buildpackage. dnsmasq crashes on the first received query with *** stack smashing detected ***: /usr/sbin/dnsmasq terminated Fixed code in 2.69test for from git pull. It

Re: [Dnsmasq-discuss] coping with ipv6 source routing and dns

2014-02-06 Thread Simon Kelley
On 30/01/14 14:40, Dave Taht wrote: I'm not sure I follow all of this, but for reverse DNS something like server=/hex, lots of hex.ip6.arpa/2001:558:feed::1 Will work. Syntactically having to have a tool to reverse the domain is a pita, what I'd like is

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-06 Thread Simon Kelley
On 06/02/14 08:15, Jan-Piet Mens wrote: 1. I am getting different results on two subsequent identical queries WRT RRSIG record and AD flag. The second answer comes from the cache, and the D0 bit is not set in the query, so the answer doesn't have the AD flag or RRSIG, if you add +dnssec to

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-05 Thread Simon Kelley
On 04/02/14 23:31, Eugene Rudoy wrote: Hi Simon, hmm, doesn't work for me yet. *All* replies are considered to be INSECURE. Feb 5 00:14:50 fb daemon.info dnsmasq[4022]: started, version 2.69test6 cachesize 256 Feb 5 00:14:50 fb daemon.info dnsmasq[4022]: compile time options: no-IPv6

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-05 Thread Simon Kelley
On 05/02/14 01:36, Matthias Andree wrote: Am 04.02.2014 16:29, schrieb Simon Kelley: DNSSEC in dnsmasq is a long story. There have been requests for the feature for at least five years, and work was started in earnest two years ago, when Giovanni Bajo got much of the way on validation, and I

Re: [Dnsmasq-discuss] Question: wildcard address for MX hosts?

2014-02-04 Thread Simon Kelley
On 03/02/14 12:01, Bob Brown - Turboweb wrote: Hi, I'm a long time user of dnsmasq and I'm giving a presentation tomorrow in which I assumed that dnsmasq could resolve any MX request to an alternate IP address. It can do it for named domains but I'd like to do it for any MX like can be done

Re: [Dnsmasq-discuss] DNS with /etc/hosts and subdomains

2014-02-04 Thread Simon Kelley
On 29/01/14 09:52, Dirk wrote: Hi, dnsmasq resolves my systems via /etc/hosts which works fine, except for names with an additional suffix. -- dnsmasq.conf (extract) -- local=/dyn.example.com/ expand-hosts domain=dyn.example.com -- hosts -- 10.0.0.1 system1 10.0.0.2 system2 ... 10.1.0.1

Re: [Dnsmasq-discuss] DHCPv6 and MAC

2014-02-04 Thread Simon Kelley
On 29/01/14 09:53, Shai Venter wrote: Hello /Simon Kelley/ Referring to http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2013q1/006818.html The thread mainly focuses on Operating System side of a IPv6 dhclient functions. But here are other aspects of the issue, more difficult

Re: [Dnsmasq-discuss] Always Ignore Client Identifier

2014-01-31 Thread Simon Kelley
lease. There is a utility in contrib/wrt in the source distribution, and a binary in the Debiann package of dnsmasq, for releasing a specific lease from the command-line. On Jan 30, 2014 2:08 AM, Simon Kelley si...@thekelleys.org.uk mailto:si...@thekelleys.org.uk wrote: On 29/01/14 18:04

Re: [Dnsmasq-discuss] dnskey

2014-01-30 Thread Simon Kelley
On 29/01/14 19:30, e9hack wrote: How must I define a dnskey? Help shows: --dnskey=domain,algo,key Specify trust anchor DNSKEY I retrieve the trust anchor DNSKEY for the de zone with dig +multiline de dnskey ; DiG 9.7.6-P4 +multiline de dnskey ;; global options: +cmd ;; Got answer: ;;

Re: [Dnsmasq-discuss] coping with ipv6 source routing and dns

2014-01-30 Thread Simon Kelley
On 29/01/14 19:22, Dave Taht wrote: I have been (mostly) happily fiddling with my new comcast ipv6 connection, trying to route all dns queries over ipv6 in particular, by disabling requesting the ipv4 dns addrs and relying on the dhcpv6 request to succeed. config interface eth0 option

Re: [Dnsmasq-discuss] Always Ignore Client Identifier

2014-01-30 Thread Simon Kelley
On 29/01/14 18:04, Linux Luser wrote: We have a pretty tightly-controlled private network environment which we've configured to have a 1-to-1-to-1 relationship between client MAC address, hostnames and IP addresses. Apart from guest IP ranges, we have control over when clients get added to the

Re: [Dnsmasq-discuss] DHCP DNS Issues

2014-01-26 Thread Simon Kelley
DNS requests to the upstream server, which obviously then returns NXDOMAIN. Running: Dnsmasq version 2.58 Copyright (c) 2000-2011 Simon Kelley Compile time options IPv6 GNU-getopt no-RTC no-DBus no-i18n DHCP TFTP no-conntrack no-IDN I have a domain set in the conf file (vortex), with expand

Re: [Dnsmasq-discuss] DNSSEC enabled dnsmasq dies very quickly

2014-01-26 Thread Simon Kelley
On 26/01/14 22:47, e9hack wrote: Hi, for testing purpose, I compile dnsmasq with option -DHAVE_DNSSEC. After a few name queries, dnsmasq dies. In the example, I start firefox on Windows 7. After a few queries, dnsmasq isn't longer running: DNSSEC is still rather experimental, so no

Re: [Dnsmasq-discuss] How to add extra names for a system - i.e. host aliases?

2014-01-23 Thread Simon Kelley
On 23/01/14 12:31, Chris Green wrote: This sounds trivially simple but I can't actually find a straightforward answer anywhere. If I have a machine on my LAN that obtains its IP etc. by DHCP from a local dnsmasq server how do I give that machine multiple names? E.g. I want my raspberrypi to be

Re: [Dnsmasq-discuss] lease-expires overflows, causes infinite loop

2014-01-22 Thread Simon Kelley
On 22/01/14 00:52, Daniel Mentz wrote: I'm having this problem where dnsmasq gets into an infinite loop. This is what my lease file looks like (only the MAC addresses have been changed to protect the innocent) 2147483647 a0:0b:ba:00:90:91 192.168.42.79 android-67a44277e5118e11 00:14:d1:22:aa:e6

Re: [Dnsmasq-discuss] dhcp-pd, and autoassigned internal interfaces issues

2014-01-21 Thread Simon Kelley
On 21/01/14 16:19, Dave Taht wrote: I have finally got my first-ever comcast ipv6 set of users up, and we have a problem with the interrelationship between addresses assigned dynamically by dhcpv6-pd and other means in dnsmasq 2.68. What happens now is that dhcpv6-pd works but dnsmasq 2.68

Re: [Dnsmasq-discuss] Proposal and sample code: actions replacing ipsets??

2014-01-21 Thread Simon Kelley
Apologies for so-far ignoring this interesting discussion. My brain is currently full of DNSSEC with very little bandwidth for other things. I promise to try and fix that soon. Cheers, Simon. ___ Dnsmasq-discuss mailing list

Re: [Dnsmasq-discuss] dnsmasq 2.62-3 as DHCPv6-Server and RA-Server: Bug sending router's link-local instead of global address as gateway and DNS-server?

2014-01-21 Thread Simon Kelley
On 21/01/14 13:02, Martin Babutzka wrote: Thanks for the replies! I hesitantly updated to dnsmasq-2.68 since I first wanted to stick to the version provided with Debian wheezy. The quiet-options really reduce the amount of syslog messages except for: dnsmasq-dhcp[23663]: no address range

Re: [Dnsmasq-discuss] Client does not receive BOOTPREPLY

2014-01-21 Thread Simon Kelley
On 20/01/14 07:29, Roeland Douma wrote: Hi, I am setting up dnsmasq over at my parents but have an issue with 1 client (a raspberry pi) not getting a response to his BOOTPREQUEST. All the other hosts (my laptop, my phone etc) all do get an valid lease so it seems something weird is happening.

Re: [Dnsmasq-discuss] Sending RA without dhcp-range

2014-01-17 Thread Simon Kelley
please help me clarify how I can send RA on specific interfaces with the right flags? The only thing I can think of is leveraging “—ra-param”, but it doesn’t have place to put in mode keywords….. Thanks again! Shixiong On Jan 17, 2014, at 5:49 AM, Simon Kelley si...@thekelleys.org.uk wrote

Re: [Dnsmasq-discuss] Sending RA without dhcp-range

2014-01-17 Thread Simon Kelley
of is leveraging “—ra-param”, but it doesn’t have place to put in mode keywords….. Thanks again! Shixiong On Jan 17, 2014, at 5:49 AM, Simon Kelley si...@thekelleys.org.uk wrote: On 17/01/14 06:10, Albert ARIBAUD wrote: Le 17/01/2014 05:30, Shixiong Shang a écrit : Hi, experts

Re: [Dnsmasq-discuss] Ability to delegate to one server but fall back to another after NXDOMAIN?

2014-01-15 Thread Simon Kelley
On 13/01/14 13:59, Jesse Glick wrote: version 2.68 cachesize 150 dnsmasq: compile time options: IPv6 GNU-getopt DBus no-i18n no-IDN DHCP DHCPv6 no-Lua TFTP no-conntrack ipset auth Let us say I have two DNS servers I wish to delegate to: A: Trusted to serve addresses (and other records) for the

Re: [Dnsmasq-discuss] Dnsmasq server enabled IPv6 RA error: kernel: dnsmasq[26991]: segfault at 0 ip 0000003b12080e1e sp 00007fff17a4d2f8 error 6 in libc-2.12.so[3b12000000+18a000]

2014-01-10 Thread Simon Kelley
On 10/01/14 10:45, Da Zhao Y Yu wrote: Hi All, I encountered some problems when use dnsmasq to support IPv6 router advertisement I want to use IPv6 ra-only mode in my openstack environment. When I run the following dnsmasq command: /usr/sbin/dnsmasq --no-hosts --no-resolv --strict-order

Re: [Dnsmasq-discuss] No Reverse ipv6 DNS lookups with dnsmasq?

2014-01-10 Thread Simon Kelley
On 03/01/14 19:03, Franzeck Florian wrote: If i use /etc/hosts for those servers, reverse DNS works! The address=/domain/address form is actually a wildcard: any subdomain gets the same address. For that reason, reverse IP doesn't work: given an address, there are lots of domains that can

Re: [Dnsmasq-discuss] No Reverse ipv6 DNS lookups with dnsmasq?

2014-01-02 Thread Simon Kelley
On 02/01/14 15:55, Franzeck Florian wrote: Hi, I was playing around with ipv6 today and found that dnsmasq doesnt generate reverse dns ptr entries from dns entries in /etc/conf/dhcp That's not a standard dnsmasq configuration file. What does it contain? Dnsmasq creates ptr records for

Re: [Dnsmasq-discuss] pxe booting trouble

2013-12-28 Thread Simon Kelley
PS. Decoding the logs a bit more, I think there is pxe-prompt=PXE somewhere in your config. (Command-line? included files?) OK, scratch that. The PXE string is the default prompt. Most likely, as far as I can see, there must be at least one pxe-service config line, for with a CSA which

Re: [Dnsmasq-discuss] pxe booting trouble

2013-12-27 Thread Simon Kelley
On 27/12/13 19:54, Michael Thompson wrote: I’m having trouble pxe booting clients with dnsmasq, specifically with the dhcp part. If I use ISC dhcp, but keep dnsmasq for dns and tftp, it works fine. I’d much rather have dnsmasq do it all but simply cannot get it to work. Pxe booting via isc dhcp

Re: [Dnsmasq-discuss] pxe booting trouble

2013-12-27 Thread Simon Kelley
, no change. please find a log here http://pastebin.com/D99SQyqj many thanks On Fri, December 27, 2013 2:28 pm, Simon Kelley wrote: That all looks quite sensible. Are the p5p2 and p7p2 interfaces constituents of the bond? You might like to specify no-dhcp-interface=p7p2,p5p2 if so. I've had difficulty

Re: [Dnsmasq-discuss] pxe booting trouble

2013-12-27 Thread Simon Kelley
? included files?) Cheers, Simon. On Fri, December 27, 2013 2:55 pm, Simon Kelley wrote: Are you sure that the config you sent previously is complete? The logs would seem to indicate that full PXE mode (as opposed to DHCP netboot) is enabled. That would need a pxe-service dnsmasq config

Re: [Dnsmasq-discuss] ARP ignores DHCP ACKs !

2013-12-26 Thread Simon Kelley
On 25/12/13 11:07, Nikita N. wrote: The important point for your situation is that it's perfectly normal to see a DHCP client make an ARP request as part of the address-aquisition process, and for that ARP request to go un-answered. Hi Simon :) Yes, that I understood very clearly, such

Re: [Dnsmasq-discuss] Multiple MAC addresses in dhcp-host line

2013-12-26 Thread Simon Kelley
On 26/12/13 08:13, John Hanks wrote: Hi, Short question: What is the maximum number of MAC addresses that can be present in a dhcp-host entry? Long explanation: I have a number of hosts which have multiple MAC addresses and are stateless between boots. They use PXE to get a kernel and initrd,

Re: [Dnsmasq-discuss] tags in opts file

2013-12-23 Thread Simon Kelley
On 20/12/13 12:54, Shixiong Shang wrote: Hi, experts: I have an opts_file which contains the entries for two tags, tag0 and tag1. Two dnsmasq instances are sharing the same opts_file. In this case, is it possible to let the first dnsmasq only read the opts entires beginning with tag0, and let

Re: [Dnsmasq-discuss] Ping does not work but nslookup works (Use dnsmasq on Mac OS X)

2013-12-23 Thread Simon Kelley
On 23/12/13 15:03, Peng Yu wrote: Hi, I followed the instruction at the following address (after section Solution: DNSMasq). My machine is Mac OS X 10.8.5. http://www.justincarmony.com/blog/2011/07/27/mac-os-x-lion-etc-hosts-bugs-and-dns-resolution/ The only difference is that I have the

Re: [Dnsmasq-discuss] Ping does not work but nslookup works (Use dnsmasq on Mac OS X)

2013-12-23 Thread Simon Kelley
On 23/12/13 16:09, Peng Yu wrote: When I run dig oxygen.yulab, I see the following log. Dec 23 10:05:35 dnsmasq[51588]: query[A] oxygen.yulab from 127.0.0.1 Dec 23 10:05:35 dnsmasq[51588]: forwarded oxygen.yulab to 192.168.1.25 Dec 23 10:05:35 dnsmasq[51588]: reply oxygen.yulab is 192.168.1.163

Re: [Dnsmasq-discuss] LLMNR?

2013-12-20 Thread Simon Kelley
On 20/12/13 09:07, Nikita N. wrote: Hi :) I searched the man page but didnt find any mention to LLMNR.. my Windows7 client keeps sending queries to LLMNR, but they all stay unanswered.. I dont have others dns servers, Im in the authoritative case. So wanted to ask, how can I configure dnsmasq to

Re: [Dnsmasq-discuss] Difference between SLAAC and RA-ONLY mode

2013-12-19 Thread Simon Kelley
On 19/12/13 04:02, Shixiong Shang wrote: I just found a workaround….If I replaced “slaac” mode with “static” mode, then it just worked fine…But I don’t understand why it worked. :( What version of dnsmasq are you using? That command line doesn't generate an error with the latest code.

Re: [Dnsmasq-discuss] Difference between SLAAC and RA-ONLY mode

2013-12-19 Thread Simon Kelley
On 18/12/13 15:21, Shixiong Shang wrote: Hi, Simon: This is very helpful! Thanks a lot for your confirmation! A quick question, is there any way we can set M-bit to 1 and set A-bit to 0? In other words, I am trying to force VM to use DHCPv6 only, but not SLAAC? Yes, configure the

Re: [Dnsmasq-discuss] Can't get other configutations in stateless dhcpv6 mod!.

2013-12-19 Thread Simon Kelley
On 19/12/13 13:59, Jian Lee wrote: Thanks for your reply! you are right,the vm do not send dhcpv6 request.I use Fedora16 to create vms,and the config in /etc/sysconfig/network-scripts/ifcfg-eth0 is below: -- DEVICE=eth0 BOOTPROTO=dhcp

Re: [Dnsmasq-discuss] RA-Stateless mode question

2013-12-19 Thread Simon Kelley
On 19/12/13 17:21, Shixiong Shang wrote: Hi, expert: I am using the dnsmasq in DHCPv6 Stateless mode. Based on the sniffer trace, I saw my DHCPv6 client solicit optional information, but dnsmasq replied with nothing. The log showed “no address available”….Anything I did wrong? Most probably,

Re: [Dnsmasq-discuss] Intermitent DNS failures

2013-12-18 Thread Simon Kelley
On 18/12/13 09:30, ion.beguiristain wrote: Hi everyone, I'm Ion a network admin who is having a bit of trouble with dnsmasq. I'm running dnsmasq 2.59-4 on a x86_64 Ubuntu server 12.04.3 LTS. It has been working fine for a long time but couple of days ago it started intermitently failing to

Re: [Dnsmasq-discuss] default lease time for dhcp-host entries ?

2013-12-17 Thread Simon Kelley
the 2m lease time issue. On Monday, December 16, 2013 2:28 PM, Simon Kelley si...@thekelleys.org.uk wrote: On 16/12/13 19:36, Maule Mark wrote: I'm seeing an unexptected (to me) behavior when using a dnsmasq hostsfile and dhcp. To start, my

Re: [Dnsmasq-discuss] Difference between SLAAC and RA-ONLY mode

2013-12-17 Thread Simon Kelley
On 17/12/13 12:29, Shixiong Shang wrote: Hi, guys: I tried both “slaac” mode and “ra-only” modes with dnsmasq version 2.66. One thing I noticed was, both modes set the same bit value in the RA: M-bit = 0, O-bit = 0, A-bit = 1, L-bit = 1. I am wondering what’s the difference between these two

Re: [Dnsmasq-discuss] dns-server in opts file doesn't work

2013-12-17 Thread Simon Kelley
On 17/12/13 12:30, Shixiong Shang wrote: Hi, experts: I tried to leverage opts file to modify the recursive dns server IP conveyed in RA. The entry in the opts file is shown below: tag:tag1,option6:dns-server,[2001:4860:4860::] I tcpdumped the outgoing RA message, but the dns server IP

Re: [Dnsmasq-discuss] dnsmasq and AD flag forwarding

2013-12-17 Thread Simon Kelley
On 16/12/13 11:13, Tomas Hozza wrote: - Original Message - I can see at least one bug in the code: in the code-path taken to answer a query from the cache, the value of the AD flag is never changed: it simply takes the value that it had in the query. I guess the authenticated status of

Re: [Dnsmasq-discuss] DHCPv6 same host different subnets

2013-12-17 Thread Simon Kelley
I'm confused at to what's happening. You're saying that the client on the physical network associated with 2a01:348:31:2:: gets 2a01:348:31:3::2 allocated? That's very odd. You _should_ be able to have as many dhcp-host lines as you like for a client-id, they're filtered by subnet so only

Re: [Dnsmasq-discuss] FreeBSD complement to Linux's netlink: route(4) socket

2013-12-17 Thread Simon Kelley
On 12/12/13 20:15, Matthias Andree wrote: Am 09.12.2013 17:58, schrieb Simon Kelley: OK, using this, I've implemented dynamic interface-address discovery for *BSD. Available now in git and as 2.69test1. This is very useful as it stands, since it makes the dynamic DHCPv6 address-range facility

Re: [Dnsmasq-discuss] Difference between SLAAC and RA-ONLY mode

2013-12-17 Thread Simon Kelley
On 17/12/13 17:34, Shixiong Shang wrote: Hi, Simon: Thanks a lot for your quick clarification! Just want to make sure I clearly understand what you mean….if the dhcp-range contains a range of IPv6 address, then slaac should enable dhcpv6 + ra; if the dhcp-range contains the single IPv6 address,

Re: [Dnsmasq-discuss] IPv6 host file syntax

2013-12-17 Thread Simon Kelley
On 17/12/13 18:00, Shixiong Shang wrote: Hi, expert: I am using dnsmasq as DHCPv6 server and I created host file for my IPv6 DHCP range. The first field is DUID calculated by MAC, followed by hostname, and then IPv6 address.

Re: [Dnsmasq-discuss] Reg: --dhcp-script option

2013-12-16 Thread Simon Kelley
On 16/12/13 19:06, Nehal J Wani wrote: Suppose I am using the script for dnsmasq lease-change hook ([dnsmasq.git] / contrib / mactable / macscript) and 3 leases have been handed out for a particular network. Now, if I shutdown the network and start dnsmasq again after these 3 leases have

Re: [Dnsmasq-discuss] default lease time for dhcp-host entries ?

2013-12-16 Thread Simon Kelley
On 16/12/13 19:36, Maule Mark wrote: I'm seeing an unexptected (to me) behavior when using a dnsmasq hostsfile and dhcp. To start, my interface (pmi_if) is configured with a lease time of 1h (the default), and I have a blank hostsfile. dhcp-leasefile=/var/lib/axiom/dnsmasq_pmi.leases

Re: [Dnsmasq-discuss] default lease time for dhcp-host entries ?

2013-12-16 Thread Simon Kelley
putting a fake tag in that field and see if it solves the 2m lease time issue. On Monday, December 16, 2013 2:28 PM, Simon Kelley si...@thekelleys.org.uk wrote: On 16/12/13 19:36, Maule Mark wrote: I'm seeing an unexptected (to me) behavior when using a dnsmasq

Re: [Dnsmasq-discuss] Reg: --dhcp-script option

2013-12-16 Thread Simon Kelley
that lease has expired and sends del event won't. This is also true of many of the other data supplied, eg DNSMASQ_VENDOR_CLASS, DNSMASQ_SUPPLIED_HOSTNAME, DNSMASQ_CIRCUIT_ID Cheers, Simon. On 12/17/13, Simon Kelley si...@thekelleys.org.uk wrote: On 16/12/13 19:06, Nehal J Wani wrote

Re: [Dnsmasq-discuss] DHCPv6 same host different subnets

2013-12-13 Thread Simon Kelley
On 12/12/13 14:57, Roy Marples wrote: Hi According to this: http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2013q3/007464.html This should work dhcp-host=id:00:01:00:01:XXX,[2a01:348:31:2::2],fred dhcp-host=id:00:01:00:01:XXX,[2a01:348:31:3::2],fred But it fails. I get the last

Re: [Dnsmasq-discuss] dnsmasq and AD flag forwarding

2013-12-12 Thread Simon Kelley
On 11/12/13 13:52, Tomas Hozza wrote: Hi. I have been trying to understand what --proxy-dnssec option does. From what I understand if NOT used, dnsmasq will NOT forward the AD flag set by the upstream server to its clients. If the --proxy-dnssec option is used, dnsmasq WILL forward the AD

Re: [Dnsmasq-discuss] Load balancing between multiple forward servers

2013-12-12 Thread Simon Kelley
On 11/12/13 17:32, Dallas Engelken wrote: Hi, Running, dnsmasq version 2.48. In my config, I have server=/my.domain/1.2.3.4 server=/my.domain/2.3.4.5 But when I query www.my.domain, all queries go to 1.2.3.4, and never 2.3.4.5 I have also tried enabling *all-servers* as well in the config,

Re: [Dnsmasq-discuss] FreeBSD complement to Linux's netlink: route(4) socket

2013-12-09 Thread Simon Kelley
On 05/12/13 00:13, Matthias Andree wrote: Am 03.12.2013 12:11, schrieb Simon Kelley: The standard fix is to use --bind-dynamic, which can rely on the existence of the extended API. Unfortunately that doesn't work on FreeBSD because it also relies on a a method of getting asynchronous events

Re: [Dnsmasq-discuss] address=/#/192.168.0.1 - does not work!

2013-12-09 Thread Simon Kelley
On 09/12/13 08:29, Nikita N. wrote: Hi All, its the first time for me on this maillist :) Im trying some tests with dnsmasq, but I cant make it work.. sorry :( I dont know if its a bug.. or its just me missing something.. So here what I want to do: I created a tap ethernet interface (on

[Dnsmasq-discuss] Announce: dnsmasq-2.68

2013-12-08 Thread Simon Kelley
OK, it all came together fine in the end, so today I've released dnsmasq 2.68. Download here, or from your distro of choice. http://www.thekelleys.org.uk/dnsmasq/dnsmasq-2.68.tar.gz Cheers, Simon. ___ Dnsmasq-discuss mailing list

Re: [Dnsmasq-discuss] (no subject)

2013-12-06 Thread Simon Kelley
On 06/12/13 19:20, Roy Marples wrote: Hi List I've been adding RFC3925 Vendor-Identifying Vendor Options to dhcpcd(8) and testing against dnsmasq-2.67 I added this to dnsmasq.conf: dhcp-option=vi-encap:12345, 1, It is pitch black. You are likely to be eaten by a grue.

Re: [Dnsmasq-discuss] FreeBSD complement to Linux's netlink: route(4) socket

2013-12-05 Thread Simon Kelley
That's excellent. Thank you. We're too late in the 2.68 cycle for this, but it's first think on my list for 2.69. Google suggests that it should work on any *BSD system, including macOS? Cheers, Simon. On 05/12/13 00:13, Matthias Andree wrote: Am 03.12.2013 12:11, schrieb Simon Kelley

Re: [Dnsmasq-discuss] 2.68rc4: bind-interfaces, FreeBSD, IPv6 2001:... addr fails and loses error code, parallel build brittle

2013-12-04 Thread Simon Kelley
On 04/12/13 01:09, Matthias Andree wrote: I don't think so - I rather suspect that this is a rare occasion and I was the first to see and report it. It would seem we have four nondefault constraints for the bug to show: 1. IPv6 needs to be enabled on the external interface 2. a global IPv6

Re: [Dnsmasq-discuss] 2.68rc4: bind-interfaces, FreeBSD, IPv6 2001:... addr fails and loses error code, parallel build brittle

2013-12-03 Thread Simon Kelley
On 02/12/13 21:13, Matthias Andree wrote: Am 02.12.2013 13:01, schrieb Simon Kelley: On 01/12/13 01:59, Matthias Andree wrote: Greetings, testing 2.68rc4, I have found three issues, on FreeBSD 9.2 amd64: 1. the Makefiles might not thoroughly list all dependencies required to build

Re: [Dnsmasq-discuss] 2.68rc4: bind-interfaces, FreeBSD, IPv6 2001:... addr fails and loses error code, parallel build brittle

2013-12-02 Thread Simon Kelley
On 01/12/13 01:59, Matthias Andree wrote: Greetings, testing 2.68rc4, I have found three issues, on FreeBSD 9.2 amd64: 1. the Makefiles might not thoroughly list all dependencies required to build the dnsmasq executable; I found my build miss cache.o when linking (compiling with make -j + high

Re: [Dnsmasq-discuss] Controlling TTLs and Response size

2013-12-02 Thread Simon Kelley
On 26/11/13 09:45, Nishant Rajvanshi wrote: We are using dnsmasq as a proxy/caching server for our network. We need a couple of customizations in dnsmasq for our network: 1) To be able to control the TTLs for certain IPs which are returned using aliases. so for e.g if I had an

Re: [Dnsmasq-discuss] dnsmasq-2.68rc3 Coverity difference scan against 2.67

2013-11-26 Thread Simon Kelley
On 26/11/13 09:11, Tomas Hozza wrote: Hi. I scanned dnsmasq-2.68rc3 against 2.67 for added errors with Coverity. The log is attached. There is missing one check of whine_malloc return value in cache.c. I checked that the value is commonly checked in other parts of the source. Fix pushed.

Re: [Dnsmasq-discuss] dnsmasq doesn't provide IP address to udhcpc?

2013-11-26 Thread Simon Kelley
On 26/11/13 10:45, Tom Isaacson wrote: We have an embedded Linux device using udhcpc to get a DHCP IP address and a Wifi access point that provides it. Originally the WAP used udhcpc as well and this worked fine, but in order to add DNS support we replaced udhcpc with dnsmasq. This works fine

Re: [Dnsmasq-discuss] dnsmasq doesn't provide IP address to udhcpc?

2013-11-26 Thread Simon Kelley
On 26/11/13 21:29, Tom Isaacson wrote: what I've done to fix it is easy. The first thing you tried translates as force broadcast mode when doing BOOTP. Since you're not doing BOOTP, it makes no difference. The second attempt says force broadcast mode when NOT doing BOOTP and unsurprisingly works

Re: [Dnsmasq-discuss] DhcpV6 how to send prefixlen and default route (dnsmasq: to exclusive) (dnsmasq: to exclusive)

2013-11-25 Thread Simon Kelley
On 24/11/13 16:59, dnsmasq.bertra...@dfgh.net wrote: Le 23/11/2013 23:01, dnsmasq.bertra...@dfgh.net a écrit : Le 23/11/2013 15:06, dnsmasq.bertra...@dfgh.net a écrit : Hello, Alwas some problems with my /97 prefix ... on the client side dhclient say the prefix is /64 dhclient hardcode the

Re: [Dnsmasq-discuss] DhcpV6 how to send prefixlen and default route

2013-11-25 Thread Simon Kelley
On 25/11/13 11:57, Roy Marples wrote: On 23/11/2013 14:06, dnsmasq.bertra...@dfgh.net wrote: Hello, Alwas some problems with my /97 prefix ... on the client side dhclient say the prefix is /64 the router advertissement is ok with ridsc6 i see that i have /97 prefix in dhcp no option for

Re: [Dnsmasq-discuss] CNAME related segfault in v2.67 onwards

2013-11-25 Thread Simon Kelley
Many thanks for the thorough analysis. My understanding is that this is fixed in http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=7b174c250df2bc97b503fd03b9e473998676b1a6 and therefore in 2.68test1 onwards. The Subject of your email implies that's not true, or have I misunderstood?

Re: [Dnsmasq-discuss] CNAME related segfault in v2.67 onwards

2013-11-25 Thread Simon Kelley
On 25/11/13 18:51, Andrew Childs wrote: I’m still seeing this crash in v2.68rc2. There’s a check in cache_find_by_name (cache.c:561) that doesn’t consider F_CONFIG. Here’s a full backtrace from v2.68rc2: You're an official Hero of the Revolution for spotting this before the 2.68 release.

[Dnsmasq-discuss] Announce: dnsmasq-2.68rc 1

2013-11-21 Thread Simon Kelley
I'm minded to make a new stable release quite soon. After the very long interval between 2.66 and 2.67, the final 2.67 release ended up with a couple of niggly bugs, and some useful changes were missed. One of the enhancements makes slightly incompatible changes to the configuration of the

Re: [Dnsmasq-discuss] Need some indications to patch dnsmasq, to bypass /64 limit

2013-11-21 Thread Simon Kelley
On 16/11/13 09:08, dnsmasq.bertra...@dfgh.net wrote: You should be able to configure DHCPv6 in dnsmasq to handle larger prefixes. You can't do SLAAC address allocation that way, because it depends on a 64-bit prefix and a 64-bit EUI-64 id, but DHCP works. Something like

Re: [Dnsmasq-discuss] timing of dhcp-script for tftp downloads

2013-11-16 Thread Simon Kelley
On 16/11/13 14:21, Maule Mark wrote: When is dhcp-script called after doing a tftp download? Is that script invoked immediately, or is it queued operation that has an indeterminate delay between tftp completion and script start? It's queued at transfer completion. There are at least two

Re: [Dnsmasq-discuss] IPv6 - Router Advertisement

2013-11-15 Thread Simon Kelley
On 14/11/13 17:38, Tsachi wrote: Hi, I have a question regarding dnsmasq behavior regarding IPv6 RA message while using the constructor config option. Version details: Kernel 2.6.35, Dnsmasq ver 2.67 I am working on a small Linux router device which obtains a single dynamic global \64 prefix

Re: [Dnsmasq-discuss] IPv6 - Router Advertisement

2013-11-15 Thread Simon Kelley
OK, I found the problem, http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commitdiff;h=dd9d9ce54c46b0e110f71f8cb19934bd2e8ae656 or dnsmasq-2.68test2 should fix it. The patch will apply to 2.67, if you'd rather do that. Thanks for the report. Cheers, Simon. On 14/11/13 17:38, Tsachi

Re: [Dnsmasq-discuss] Proxydhcp only for specific clients

2013-11-15 Thread Simon Kelley
I think the solution is to use dhcp-ignore. You have to write some config which discriminates between clients you want answered and ones you don't (via MAC address, vendor-class, or otherwise) and arrange that a tag is set only for ones you want, then add dhcp-ignore=!tag to your config.

Re: [Dnsmasq-discuss] IPv6 - Router Advertisement

2013-11-15 Thread Simon Kelley
On 15/11/13 12:10, Tsachi wrote: Thanks Simon, I will test it and let you know. Also what do you say regarding including router lifetime=0 in the RA msg in this case ? Sorry, I missed that. I just pushed a change to do this. If the ONLY prefixes being advertised have preferred lifetime of

Re: [Dnsmasq-discuss] dnsmasq doesnot listen on interface with auth-server interface has /4 suffix.

2013-11-15 Thread Simon Kelley
On 15/11/13 13:58, René van Dorst wrote: Dnsmasq does not listen on interface when auth-server interface has /4 suffix. This does not work, but I don't get any error/warning and dnsmasq is running. auth-server=example.com,eth0.88/4 But is does with: auth-server=example.com,eth0.88 Git

Re: [Dnsmasq-discuss] Need some indications to patch dnsmasq to bypass /64 limit

2013-11-13 Thread Simon Kelley
On 12/11/13 15:43, dnsmasq.bertra...@dfgh.net wrote: 'llo My hosting provider give me only a /96 ipv6 adress and I xant put on my host some vm with libvirt and dhcp. I got the message no dhcpv6 range available ... since the bridge adress have a prefix 64. Since the dnsmasq.conf is build by

Re: [Dnsmasq-discuss] Record FQDN on DHCPv6 INFORM

2013-11-13 Thread Simon Kelley
On 12/11/13 15:26, Roy Marples wrote: Hi List The majority of my IPv6 capable hardware doesn't grok DHCPv6. This is fine and dandy, because it understands RS/RA just fine and some even work with the RDNSS and DNSSL RA options. The way that I see it is that the RA can set the O bit so that a

Re: [Dnsmasq-discuss] dhcp-host wildcard matching

2013-11-13 Thread Simon Kelley
On 09/11/13 21:23, Swarvek Swiac wrote: Hi I had a look at the documentation but couldn't find if there is a way to do wildcard match for host name in dhcp-host option. I'm not after anything fancy, just simple substring search. In my case I'm trying to set specific options for Android

Re: [Dnsmasq-discuss] DNSMASQ_SERVER_DUID is empty with --leasefile-ro

2013-11-07 Thread Simon Kelley
On 06/11/13 11:53, unDEFER wrote: Hello, Simon! Thank you for the great tool! I have the bug report for you: I'm using very simple script to test behaviour of dnsmasq with --dhcp-script= option and DHCPv6. It looks like: #!/bin/sh echo $*/tmp/dnsmasq... env/tmp/dnsmasq... echo/tmp/dnsmasq...

Re: [Dnsmasq-discuss] dhcp-helper and dnsmasq coexist problem

2013-11-07 Thread Simon Kelley
On 06/11/13 03:38, Jerry wrote: Hello, I want to run dhcp-helper and dnsmasq at same time in my device which have multiple bridges. for example, br0 get ip address from DNSMASQ, and br1 get ip from another dhcp server through dhcp relay. There are something happened, I use the -p option in

Re: [Dnsmasq-discuss] following RFC6106 triggers bug in network-manager

2013-11-07 Thread Simon Kelley
The determination of these lifetimes was changed in dnsmasq-2.67 to be based on the preferred lifetime of the prefix whose local address is being advertised, which is normally the prefix with the longest preferred lifetime on the interface. That seems to me to be a more sensible metric, and

Re: [Dnsmasq-discuss] interface+macvlan on same network confuses dnsmasq v2.66rc2

2013-11-07 Thread Simon Kelley
On 05/11/13 08:52, Gui Iribarren wrote: On 10/22/2013 08:20 PM, Simon Kelley wrote: On 22/10/13 17:17, Gui Iribarren wrote: On 10/22/2013 05:45 PM, Simon Kelley wrote: On 21/10/13 20:31, Gui Iribarren wrote: Hello Simon! Then, do you think there's any chance of getting that arp trick

Re: [Dnsmasq-discuss] mDNS forwarding in dnsmasq (not avahi, but nss-mdns sort of thing)

2013-11-04 Thread Simon Kelley
On 03/11/13 00:46, Dmitry Khromov wrote: Hello. Is it possible to remove reply's IP address check for 224.0.0.251 in dnsmasq? Maybe, check if the reply is from given subnets instead. Doing so should allow to proxy mDNS replies, eliminating need for nss-mdns in some scenarios by just using

Re: [Dnsmasq-discuss] DHCPv6 Prefix delegation

2013-11-04 Thread Simon Kelley
On 02/11/13 18:06, mudru...@spoje.net wrote: Hello, 1.) i am experimenting with DHCPv6 and possibilities of implementing preffix delegation... And i've found that i am not even able to get rudimentary DHCPv6 running, i am trying to assign adress (and possibly dhcpv6 options) to specified DUID

<    6   7   8   9   10   11   12   13   14   15   >