Re: [Dnsmasq-discuss] dump dynamic dns assignments

Like Buck says, it's easily found via either the running command line or the config file. Mine is in the config, so for example, I can show lease expiration like this (note that the MACs and DUIDs are fake): $ grep leasefile /etc/dnsmasq.conf dhcp-leasefile=/tmp/dhcp.leases $ cat

Re: [Dnsmasq-discuss] Caching of HTTPS and SVCB records

On Fri, Dec 8, 2023 at 6:42 AM Donald Muller wrote: > I do not see this in the man page. > > https://thekellys.org.uk/dnsmasq/docs/dnsmasq-man.htm > > Yes. It's not released yet so you have to look on the 'all-rr-type' branch:

Re: [Dnsmasq-discuss] Implications of raising dns-forward-max

On Thu, Jun 29, 2023 at 12:52 AM Buck Horn wrote: > Blindly increasing dns-forward-max without having analysed the actual > issue does not seem to recommend itself as the best option available to > me, even if it would turn out that actual resource impacts are minor. > > Stopping or

[Dnsmasq-discuss] Implications of raising dns-forward-max

A couple posts on the OpenWrt forum have indicated that they are having DNS issues that are resolved by raising the forward limit from OpenWrt's default of 150 to 500. dns-forward-max=500 Assuming that there are indeed a lot of queries going on simultaneously, what does this affect? Does it

Re: [Dnsmasq-discuss] Why does the dnsmasq routing feature require a subnet prefix length of 64?

Yeah, some of the RFCs on v6 address formats hem and haw about how big the network ID and interface ID parts are (probably written before actual implementations were in place), but https://www.rfc-editor.org/rfc/rfc4291#section-2.5.1 says quite unequivocally: For all unicast addresses, except

Re: [Dnsmasq-discuss] Do we have good way to register SLAAC clients?

On Wed, Jun 7, 2023 at 8:14 AM Petr Menšík wrote: > Is there any better way, how to provide more friendly names for IPv6 > devices? Sometime we want privacy instead, but that is not needed in > trusted network like our own network. Apple devices use Multicast DNS to > announce themselves anyway.

Re: [Dnsmasq-discuss] dhcp-lease-max is only for DHCPv4?

Here's some details on what Simon is talking about, the DHCP DUID: https://www.rfc-editor.org/rfc/rfc3315.html#page-19 I was wondering if the dhclient was releasing when it dies at step #4? Maybe just background it and keep running more clients? I would definitely try @imnozi's suggestions,

Re: [Dnsmasq-discuss] State of blocking type=65 requests?

On Wed, Apr 5, 2023 at 7:00 AM Ed W wrote: > > I have customers on Iridium satellite links. So basic system is 2.4kbit > (300 bytes/sec) and it costs > around $100/MB > Completely off-topic, but can you tell us where the customers reside? My wild guess is Antarctica. Seems like the only place

Re: [Dnsmasq-discuss] Allow IP address in nftset

Hi Kurt, Could it be that your dnsmasq is too old? Can I assume OpenWrt? Dnsmasq is currently at 2.86 on the release branch 22.03, and is missing the nftset stuff, but SNAPSHOT is at 2.89, so it should work there... Eric On Sun, Mar 26, 2023 at 1:15 PM Kurt Fitzner via Dnsmasq-discuss <

Re: [Dnsmasq-discuss] what is [Discover, Offer...] called?

On Tue, Feb 28, 2023 at 3:53 PM Carl Karsten wrote: > In an effort to name variables and have understandable conversations, > I don't know what these things are called: > > 82 #define DHCPDISCOVER 1 > 83 #define DHCPOFFER2 > 84 #define DHCPREQUEST 3 >

Re: [Dnsmasq-discuss] ipv6 slaac or stateless - No address or no address range available

On Mon, Feb 27, 2023 at 1:36 PM Simon Kelley wrote: > > > On 27/02/2023 20:10, Eric Fahlgren wrote: > > > Does 'option6:3' translate this from DHCPv4's 'router' to an RA, or does > > it consider it to be DHCPv6 'OPTION_IA_NA'? Does the 'option6:6' > > (OPT

Re: [Dnsmasq-discuss] ipv6 slaac or stateless - No address or no address range available

On Mon, Feb 27, 2023 at 8:15 AM Simon Kelley wrote: > > On 25/02/2023 16:19, Daniel via Dnsmasq-discuss wrote: > > dhcp-option=tag:computer6,option6:3,fd99:1234:beef:cafe::2 > > dhcp-option=tag:computer6,option6:6,fd99:1234:beef:cafe::1 > >

Re: [Dnsmasq-discuss] Change upstream server by client?

you can also set a Canary Domain : > https://support.mozilla.org/en-US/kb/canary-domain-use-application-dnsnet > > That is what we also do to Redirect DNS request to the router (I am a > DDWRT developer) > > > > Erik > > > > *Van:* Eric Fahlgren > *Verzonden:*

Re: [Dnsmasq-discuss] Change upstream server by client?

Well, the real issue is DNS "leakage", because some (most?) browsers and lots of phone apps use their own resolvers, thus bypassing your advertised DNS resolver. My solution is on the router: I set up dnsmasq as my local resolver (with adblock and DNSSEC, stubby is my backend for DoT), don't even

Re: [Dnsmasq-discuss] failed to read symlink-files added by `list addnhosts '/etc/safe-search/enabled'`

id symlink attacks? i.e. file works, symlink does not > work. > > > > On Sat, Nov 26, 2022 at 2:19 PM Eric Fahlgren > <mailto:ericfahlg...@gmail.com>> wrote: > > > > I can't imagine that dnsmasq would even know that the file it was > > ope

Re: [Dnsmasq-discuss] failed to read symlink-files added by `list addnhosts '/etc/safe-search/enabled'`

works, symlink does not work. > > On Sat, Nov 26, 2022 at 2:19 PM Eric Fahlgren > wrote: > >> I can't imagine that dnsmasq would even know that the file it was opening >> was a symlink. I'd suspect ownership or permissions. The dnsmasq process >> in OpenWrt is run as

Re: [Dnsmasq-discuss] failed to read symlink-files added by `list addnhosts '/etc/safe-search/enabled'`

I can't imagine that dnsmasq would even know that the file it was opening was a symlink. I'd suspect ownership or permissions. The dnsmasq process in OpenWrt is run as the 'dnsmasq' user, so maybe 'chown dnsmasq:dnsmasq /etc/safe-search/enabled/*' or some variant would resolve your issue. On

Re: [Dnsmasq-discuss] URIBL_BLOCKED with dnsmasq and server options

On Tue, Aug 30, 2022 at 12:27 PM Jelle de Jong wrote: > So I setup dnsmasq with only one server: > > server=127.0.0.1#533 > > and ran unbound with the following config: > > server: > port: 533 > ... What would be a better port then 533 for a localhost only DNS service... > is there something

Re: [Dnsmasq-discuss] URIBL_BLOCKED with dnsmasq and server options

On Tue, Aug 30, 2022 at 5:19 AM Jelle de Jong wrote: > dnsmasq has lots of nice features like tftp, tftp-mtu, srv-host, > dhcp-boot, dhcp-range etc that have nothing to do with a dns resolving. > Yes, big +1 on that. > I would like to keep using dnsmasq but I would also like my URIBL > lookups