Re: [Dnsmasq-discuss] dhcp-host precedence request due multiple matches

On 6/21/21 8:42 AM, Jesus M Diaz wrote: so, if I have two virtual computers running over the same hardware, what should be used as identifier for dnsmasq? the physical mac-address (just one, as it is just one physical card)? the dhcp-client-id or hostname (configurable as per logical device

Re: [Dnsmasq-discuss] Wildcard / catch all Mail eXchanger (MX)

On 08.05.21 22:44, Mark wrote: Thanks for the suggestion Petr - have put a DNAT rule in place - does the job. :) at least until one of your clients start complaining that you are hijacking their SMTP connections, which may lead to legal issues. On Sat, 8 May 2021 at 06:33, Petr Menšík

Re: [Dnsmasq-discuss] Wildcard / catch all Mail eXchanger (MX)

Hello, On 07.05.21 22:13, Petr Menšík wrote: I don't think there exists way to do what you requested using dnsmasq. However, it might work to DNAT rule outgoing SMTP connections to your smarthost, moving this decision from DNS to IP firewall/NAT. Could be done only on some gateway of course.

Re: [Dnsmasq-discuss] Using a reverse lookup host file

On 04.05.21 18:17, Ercolino de Spiacico wrote: 1) why doesn't dnsmasq perform reverse DNS resolution by default? All the info is in there but it seems like additional directives are needed. what do you mean? dnsmasq resoves everything it can, but only if you ask for it. 2) Talking about

Re: [Dnsmasq-discuss] DKIM / DMARC emails.

On Sun, Feb 21, 2021 at 10:40:37PM +0100, Geert Stappers via Dnsmasq-discuss wrote: On Sun, Feb 21, 2021 at 08:39:28PM +, Simon Kelley wrote: > On 19/02/2021 12:35, Matus UHLAR - fantomas wrote: > > On 18.02.21 22:50, Simon Kelley wrote: > >> That wiki page is just word-soup as far as I am

Re: [Dnsmasq-discuss] why need to enumerate interfaces

On 04.03.21 17:23, yangtao wrote: Why do we call enumerate_interfaces and create_bound_listeners function? I didn't understand the logical. Could anyone help me to understand it? you can have configuration specifying different behavior per interface. AFAIK on some systems you don't know which

Re: [Dnsmasq-discuss] Upstream DNS-Server doesn't work

On 15.08.21 11:34, Andreas Fendt via Dnsmasq-discuss wrote: server=/int.feuerwehr-ziemetshausen.de/192.168.2.51 server=/vpn.int.feuerwehr-ziemetshausen.de/8.8.8.8 Now my problem is that when I do an DNS-Query on this dnsmasq I don't get an response to sub-domains like

Re: [Dnsmasq-discuss] Noob question

On 30.08.21 13:06, rrandom via Dnsmasq-discuss wrote: Hello. In one of the dnsmasq filterlists I found that domains redirected to `#` like `address=/example.com/#` this is in changelog for 2.80: Implement --address=/example.com/# as (more efficient) syntactic sugar for

Re: [Dnsmasq-discuss] Noob question

On 31.08.21 01:15, Trey Sis wrote: I think he meant dropping the DNS request. dropping the DNS request would result in request retransmission. returning answer is a better idea, although we can discuss if it's supposed to be all-zero, NXDOMAIN, or NODATA (SERVFAIL would result in

Re: [Dnsmasq-discuss] What's the "right" way to specify upstream servers?

figuration: interface eth0 static ip_address=192.168.1.2/24 #static ip6_address=fd51:42f8:caae:d92e::ff/64 static routers=192.168.1.1 static domain_name_servers=192.168.1.2 1.1.1.1 212.159.13.49 On Sat, Sep 04, 2021 at 04:33:10PM +0200, Matus UHLAR - fantomas via Dnsmasq-discuss wrote: th

Re: [Dnsmasq-discuss] What's this error in syslog mean?

On 05.09.21 22:45, Chris Green wrote: > I did say what versions I was running. The version which causes the > problem is 2.80, the version that fixes it is 2.84. On Mon, Sep 06, 2021 at 01:17:52PM +0200, Matus UHLAR - fantomas via Dnsmasq-discuss wrote: I don't think dnsmasq comes wit

Re: [Dnsmasq-discuss] What's this error in syslog mean?

On Sun, Sep 05, 2021 at 01:18:18PM +0100, Chris Green wrote: > On Sun, Sep 05, 2021 at 12:51:54PM +0100, Chris Green wrote: > [snip] > > > > It's the calls to systemd-start-resolvconf and systemd-stop-resolvconf that are causing > > the error. For some reason on the Pi it causes this error, but

Re: [Dnsmasq-discuss] What's the "right" way to specify upstream servers?

f as > follows:- > ># Example static IP configuration: >interface eth0 >static ip_address=192.168.1.2/24 >#static ip6_address=fd51:42f8:caae:d92e::ff/64 >static routers=192.168.1.1 >static domain_name_servers=192.168.1.2 1.1.1.1 212.159.13.49 O

Re: [Dnsmasq-discuss] What's this error in syslog mean?

On 05.09.21 10:14, Chris Green wrote: I have looked at a new installation of dnsmasq on another Raspberry Pi and that does exactly the same thing. A ps shows:- dnsmasq605 1 0 Sep04 ?00:00:17 /usr/sbin/dnsmasq -x /run/dnsmasq/dnsmasq.pid -u dnsmasq -r

Re: [Dnsmasq-discuss] What's the "right" way to specify upstream servers?

On 03.09.21 17:13, Chris Green wrote: I know there probably isn't a "right" way to do this but, while I've been trying to sort out how to make my dns/dhcp more resilient, I have looked at my existing dnsmasq running on a Pi and it looks a bit odd to me. It's a pretty standard, off the shelf

Re: [Dnsmasq-discuss] How to Add max-ttl in DNSMASQ

On 11.10.21 13:13, OMair Siddiquii wrote: I am trying to add the max-ttl= parameter within the DNSMASQ config file but unfortunately when I'm starting the dnsmasq service it fails to start the dnsmasq process. I am following the document mention in the link below. I am using DNSMASQ version

Re: [Dnsmasq-discuss] How to Add max-ttl in DNSMASQ

On 11.10.21 16:01, OMair Siddiquii wrote: Even after upgrading to version 2.85 it didn't work. what exactly does "didn't work" mean? does dnsmasq still refuse to start? do you have any error message? did you try to stop it before starting? On 11.10.21 13:13, OMair Siddiquii wrote: I am

Re: [Dnsmasq-discuss] filter-AAAA is breaking dnsmasq

On 11.10.21 02:53, E wrote: This is webmail, not a client. webmail is a client too. Many email clients such as Mozilla Thunderbird are spying nowadays. Mozilla telemetry, Windows 10 spying, you name it. you can in many cases (mozilla) turn that off. You also can have telemetry in webmail

Re: [Dnsmasq-discuss] Behavior change of upstream servers set via DBus

On 17.11.21 15:50, Jerry Xiao wrote: It's unnecessary and inefficient to rebuild a config file that long every time you connect to a new wifi network, well, you have used default and "default" server, where the "default" was not really default, because only configured domains were pointed to

Re: [Dnsmasq-discuss] Behavior change of upstream servers set via DBus

erge my changes if the size of the flags are enarged. Worst case I just replace dnsmasq with systemd-networkd, but before that I'd like to know if there's still other ways to implement this. Any help is appreciated. Thanks Jerry On Tue, 2021-11-09 at 17:23 +0100, Matus UHLAR - fantomas via Dn

Re: [Dnsmasq-discuss] Unqualified names and default nameserver configuration

On 08.11.21 14:04, Omer Ozarslan wrote: I am trying to redirect example.com and unqualified names to standard server, and everything else to a different one. you have logical error there. the "default server" is the server where "everything else" is sent. if you want to send "example.com" and

Re: [Dnsmasq-discuss] Behavior change of upstream servers set via DBus

0:33 +0100, Matus UHLAR - fantomas via Dnsmasq- discuss wrote: On 09.11.21 17:02, Jerry Xiao wrote: > With dnsmasq 2.85 I was able to do the following: > 1. set upstream servers (lets say 192.168.1.1) via dbus from the > dhcp > client, in my case it was networkmanager. > 2. add the follo

Re: [Dnsmasq-discuss] Behavior change of upstream servers set via DBus

On 09.11.21 22:10, Jerry Xiao wrote: I have 30k+ lines of rules like "server=/somehost.tld/#" in my config. holy sh...! What I need is to use the dhcp assigned dns server for those 30k+ domains and forward the others to 1.1.1.1. define 1.1.1.1 as default, so everything will be forwarded to

Re: [Dnsmasq-discuss] localise-queries on ipv6 server does not work with ipv4-only hosts

Am 16.07.2021 um 10:53 schrieb Dominik DL6ER: localise-queries Return answers to DNS queries from /etc/hosts and --interface-name and --dynamic-host which DEPENDS ON THE INTERFACE over which the query was received. I don't see into the code, but if the "interface" really means "ip address

Re: [Dnsmasq-discuss] strict-order with no-resolv; multi ignore-address

On 09.01.22 13:51, Justin wrote: 3) --all-servers says: By default, when dnsmasq has more than one up‐ stream server available, it will send queries to just one server. by default it will send query to one server, and continues with different server after

Re: [Dnsmasq-discuss] Is there any way found this "Cannot assign requested address"?

On 13.02.22 17:20, Chris Green wrote: I want to configure a system to listen on an address that it doesn't actually have until I add the address to the network interface. https://duckduckgo.com/?q=linux+bind+foreign+IP=seamonkey=web on linux you should set net.ipv4.ip_nonlocal_bind=1 Feb

Re: [Dnsmasq-discuss] Questions about /etc/hosts

On 10.02.22 19:24, Chris Green wrote: When running dnsmasq it (by default) uses /etc/hosts to provide some system's addresses. Some of my systems have their names in the /etc/hosts file against a loopback address so host t470 has:- 127.0.0.1 localhost 127.0.1.1 t470.zbmc.eu t470

Re: [Dnsmasq-discuss] Comments, can I add comments on same line as confiuguration?

Hello, On 12/3/2021 4:41 PM, Chris Green wrote: It's not explicitly allowed according te the man page but can I add comments to configuration lines in dnsmasq.conf, e.g. :- domain-needed # don't forward plain names dhcp-option=3,192.168.1.1

Re: [Dnsmasq-discuss] Strange error when running 'host'

On 11.02.22 16:06, Chris Green wrote: I am setting up my dnsmasq backup system(s) and have just moved to the 'other' dnsmasq server, now I'm getting odd response to 'host' :- chris$ host esprimo esprimo has address 192.168.1.3 Host esprimo not found: 5(REFUSED) chris$ host C475IP

Re: [Dnsmasq-discuss] Does dnsmasq support cname within same domain?

On Thu, Mar 3, 2022 at 3:52 AM Matus UHLAR - fantomas via Dnsmasq-discuss < dnsmasq-discuss@lists.thekelleys.org.uk> wrote: this is strange, my dnsmasq.conf (2.85, debian 11) states: # Provide an alias for a "local" DNS name. Note that this _only_ works # for targets which are

Re: [Dnsmasq-discuss] Does dnsmasq support cname within same domain?

> You will see the issue if you add the same domain in the cname config, eg: > cname=bertand.your.dhcp.domain,bert 1. it's the default config from debian - I have not changed it. (and it's commented out) 2. it was already explained that the problem lies elsewhere, my e-mail was even reply to

Re: [Dnsmasq-discuss] Problem with no-resolv and no IP

On 06.03.22 07:22, Alkis Georgopoulos wrote: aren't bind-dynamic and bind-interfaces for people that have multiple services in the 53 port? It does not matter here. There may and may not be other programs, dnsmasq or not, listening on 53 port on different interfaces. I have a single

Re: [Dnsmasq-discuss] SERVFAIL and all-servers

On 02.03.22 19:24, Simon Kelley wrote: The behaviour on this alternated between what you observed and what you advocate a few times before settling. The problem with waiting for all replies is that a common source of SERVFAIL returns is domains with broken DNSSEC. In that case all the

Re: [Dnsmasq-discuss] Query on Privacy warning when connecting Ipad over wifi network

Hello, On 28.02.22 14:21, Gokulnathan MR wrote: Whenever connecting the Ipad with my router over wireless network, there is a privacy warning showing that "This network is blocking encrypted DNS traffic". [image: image.png] Can anyone please let me know why this is happening? How to fix this?

Re: [Dnsmasq-discuss] Does dnsmasq support cname within same domain?

> > On Tue, Mar 01, 2022 at 01:01:51AM -0800, Frank Liu wrote: > > > I am running dnsmasq for dhcp/dns of a local test domain: test.example.com. > > > Everything works fine. When a dhcp client (eg: client1) comes up, it gets > > > the IP from dnsmasq, and I can dig/nslookup

Re: [Dnsmasq-discuss] Does dnsmasq support cname within same domain?

On 02/03/2022 22:38, Frank Liu wrote: Can anyone try to add cname for same domain, and see if it works for you? Assuming your dhcp domain is internal.yourcompany.com , with an existing dhcp client client1, please add cname=testalias.internal.yourcompany.com

Re: [Dnsmasq-discuss] Copying dnsmasq.leases, any issues to be aware of?

On 08.02.22 19:32, Ed W wrote: This is never going to get high enough up my todo list to try, but I did wonder if a simple "clustered" system could be built using DBUS or similar events. When a lease is allocated DBUS (and a script) is run notifying about that. A little daemon could then use

Re: [Dnsmasq-discuss] CNAMEs

On 06.02.22 16:02, Ken Gillett via Dnsmasq-discuss wrote: Any help with the CNAME problem? On 4 Feb 2022, at 20:46, Ken Gillett via Dnsmasq-discuss wrote: I have several CNAMEs set up in DNSmasq on my Mac server that I thought were working. If I use the 'host' command to check a CNAME e.g

Re: [Dnsmasq-discuss] dhcp-host=hostnameonly does not work

On 5/19/22 07:46, Maulis Adam via Dnsmasq-discuss wrote: I like to configure my dhcp server with as little redundacy as possible. But it looks like the IP address needs to be written both of /etc/hosts and /etc/dnsmasq.conf The client machines are in the /etc/hosts for example:

Re: [Dnsmasq-discuss] Possible to reuse Cache over restats?

On 29.06.22, 22:25, "Dominik Derigs" wrote: There is no such feature and there is also nothing planned at the moment (not that I'd be aware of). On 30.06.22 12:23, Tobias Hochgürtel wrote: Would such a feature make sense? I thought like this: that when I have the DNS Name and IP's here in

Re: [Dnsmasq-discuss] URIBL_BLOCKED with dnsmasq and server options

On 18.08.22 11:08, Jelle de Jong wrote: I understand dnsmasq is an forwarding dns server and I was wondering if there is a way to configure it to do dns lookups using it own IP external address instead of the server forwarders, maybe just for URIBL lookups ... afaik there isn't. iterative

Re: [Dnsmasq-discuss] URIBL_BLOCKED with dnsmasq and server options

On 18.08.22 11:08, Jelle de Jong wrote: > I understand dnsmasq is an forwarding dns server and I was wondering > if there is a way to configure it to do dns lookups using it own IP > external address instead of the server forwarders, maybe just for > URIBL lookups ... On 8/30/22 17:41, Buck

Re: [Dnsmasq-discuss] URIBL_BLOCKED with dnsmasq and server options

queries aren't built into dnsmasq. dns-forward-max=256 server=208.67.222.222 server=208.67.220.220 What are other dnsmasq users doing to get working URIBL and not use a forwarder, do you run a caching DNS on the same server and use server=localhost? On 8/29/22 11:19, Matus UHLAR - fantomas via

Re: [Dnsmasq-discuss] What does this reply to 'host' mean?

On 16.10.22 13:34, Chris Green wrote: I have been moving some domains around on my hosting provider and for one I'm getting the following rather strange response to a 'host' command:- chris$ host www.jacquibennett.com www.jacquibennett.com is an alias for jacquibennett.com.

Re: [Dnsmasq-discuss] dnsmasq: dhcp-server with disabled dns-server: /etc/hosts ignored

On Fri, Oct 21, 2022 at 11:23:28PM +0200, Michael Traxler wrote: dnsmasq-2.87: When you disable the DNS-server via port=0 the /etc/hosts file is ignored and also the addn-hosts= is ignored. I've had the same feeling some time ago, with no resolution:

Re: [Dnsmasq-discuss] dnsmasq: dhcp-server with disabled dns-server: /etc/hosts ignored

Hello, On Fri, Oct 21, 2022 at 11:23:28PM +0200, Michael Traxler wrote: dnsmasq-2.87: When you disable the DNS-server via port=0 the /etc/hosts file is ignored and also the addn-hosts= is ignored. I was able to reproduce this behaviour. with "port 0" the /etc/hosts seems not to be

Re: [Dnsmasq-discuss] [PATCH] Fix --server=/#/...... which was lostin 2.86

. https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=f4b281381853df6b275332d4cd0ec1d150bffa86 Fixes this. On 08.08.22 19:09, Matus UHLAR - fantomas via Dnsmasq-discuss wrote: this reminds me of a discussion there the OP seemed to deliberately using the behaviour above: https

Re: [Dnsmasq-discuss] [PATCH] Fix --server=/#/...... which was lostin 2.86

On 08.08.22 15:35, Simon Kelley wrote: Testing, I did find a configuration which is broken: address=/#/1.1.1.1 server=/some.domain/# ought to forward queries for some.domain to the default server(s) read from /etc/resolv.conf (or any other default servers) but it returns 1.1.1.1 instead.

Re: [Dnsmasq-discuss] DNS recursion only works in debug mode

On Mon, Oct 31, 2022 at 03:59:56PM +0100, Matus UHLAR - fantomas via Dnsmasq-discuss wrote: I have upgraded my router which included upgrading dnsmasq 2.80 to 2.86. (Turris OS 5.4.4 based on openwrt 19 to 6.0.1 based on OpenWrt 21.02.05) in the current version, dnsmasq returns REFUSED

Re: [Dnsmasq-discuss] dnsmasq: dhcp-server with disabled dns-server: /etc/hosts ignored

On 21/10/2022 22:23, Michael Traxler wrote: When you disable the DNS-server via port=0 the /etc/hosts file is ignored and also the addn-hosts= is ignored. On 31.10.22 21:07, Simon Kelley wrote: It's at least a documentation bug. I think the reasoning behind the behaviour is that setting

Re: [Dnsmasq-discuss] listening on multiple ports at the same time

On 07.12.22 15:11, Matthias May via Dnsmasq-discuss wrote: You could do a portforward with {ip,nf}tables. this won't help when they need different configuration per port. On 12/6/22 19:51, Gordon Shawn wrote: can dnsmasq listen on different ports(e.g. 53, 5353,5354,5355) in the same time

Re: [Dnsmasq-discuss] Dynamic address config?

On Wed, Nov 23, 2022 at 01:47:27PM +0800, Feng Shao wrote: > There are a bunch of machines in our lab, and we normally don't have DNS > records configured for them, only accessing by IP. In order to ssh to them > with key auth, I have a config in my .ssh/config like > > Host *.mylab > User root

[Dnsmasq-discuss] DNS recursion only works in debug mode

Hello, I have upgraded my router which included upgrading dnsmasq 2.80 to 2.86. (Turris OS 5.4.4 based on openwrt 19 to 6.0.1 based on OpenWrt 21.02.05) in the current version, dnsmasq returns REFUSED for external lookups: % dig +nocmd +noquestion +nostats fantomas.fantomas.sk @gw.lan ;; Got