Actually, not all DNS queries fail to receive a response—only some do, especially for domains starting with "www". The only difference of query packets between version 2.91 and version 2.90 is EDNS0 header.
Perplexing ISP firewall. [email protected] From: Matus UHLAR - fantomas Date: 2025-12-23 19:36 To: dnsmasq-discuss Subject: Re: [Dnsmasq-discuss] Add an option to not always add a pseudo header? On 23.12.25 17:48, zhangguodong--- via Dnsmasq-discuss wrote: >I'm using dnsmasq as a local caching resolver for several years and upgrade to >version 2.91 recently. It used to work properly in the past, but the queries >to dnsmasq can not be replied now. >I have confirmed that my home broadband provider's firewall is blocking query >packets with the EDNS0 header, based on a comparison between versions 2.91 and >2.90. >From the changelog of version 2.91, I also learn that EDNS0 header will be >always added when talking to upstream now. Have you tried to handle this with your provider? EDNS is 25 years old (RFC 2671, August 1999) and required for many functionalities, especially since many DNS replies are bigger than the old 512B maximum for DNS UDP packets. >Therefore, is it possible to add an option to control whether to always add >EDNS0 header? -- Matus UHLAR - fantomas, [email protected] ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. REALITY.SYS corrupted. Press any key to reboot Universe. _______________________________________________ Dnsmasq-discuss mailing list [email protected] https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss
_______________________________________________ Dnsmasq-discuss mailing list [email protected] https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss
