DNS settings not set accordingly.

Post new topic   Reply to topic    DD-WRT Forum Index -> General Questions
Author Message
etherboy
DD-WRT User


Joined: 08 Jun 2007
Posts: 70

PostPosted: Fri Apr 20, 2018 19:54    Post subject: DNS settings not set accordingly. Reply with quote
I configure my DD-WRT DHCP Server

using static DNS as

Static DNS 1: 1.0.0.1
Static DNS 2: 8.8.8.8
Static DNS 3: 9.9.9.9

why my Windows 10 PC network adapter was taking this DNS order in its DHCP setting?

192.168.1.1
1.0.0.1
8.8.8.8
9.9.9.9
71.10.216.1
71.10.216.2

why 1.0.0.1 is not the first DNS? Why does it add 192.168.1.1 (router IP) as first DNS and appended 2 Charter DNS (my ISP)?

How do I tell DHCP clients only gets DNS server settings from those 3 static DNS?
Sponsor
etherboy
DD-WRT User


Joined: 08 Jun 2007
Posts: 70

PostPosted: Sat Apr 21, 2018 17:21    Post subject: Reply with quote
So I

1. keep Router IP's Local DNS 0.0.0.0
2. clear Static DNS 1-3, set them all to 0.0.0.0 and then
3. Check DNSMasq for DNS
4. Add the following to Additional DNSMasq Options on the Services page.

no-resolv
strict-order
1.0.0.1
8.8.8.8
9.9.9.9

then my PC gets
192.168.1.1
71.10.216.1
71.10.216.2
as DNS servers

how do I know 192.168.1.1 is forwarding to 1.0.0.1 , 8.8.8.8 and 9.9.9.9?
Alozaros
DD-WRT Guru


Joined: 16 Nov 2015
Posts: 6410
Location: UK, London, just across the river..

PostPosted: Sun Apr 22, 2018 9:14    Post subject: Reply with quote
hmm interesting just tested those lines

watch -tn3 "cat /proc/net/ip_conntrack | grep -Eo \"^udp [^s]*src=$(nvram get wan_ipaddr) .*\" | grep -Eo '^.*dport=53 ' | sort -k3,3rn"

-sh: watch: not found

this is the output

where to see the results and where to save those...lines
i tried to execute them and not working..

_________________
Atheros
TP-Link WR740Nv1 ---DD-WRT 55179 WAP
TP-Link WR1043NDv2 -DD-WRT 55303 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55460 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55460 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55363 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
etherboy
DD-WRT User


Joined: 08 Jun 2007
Posts: 70

PostPosted: Mon Apr 23, 2018 3:02    Post subject: Reply with quote
Found that if I use suggested settings, then all of my android devices can only connect to the router, but can't get online.

There are just so many quirky things about DD-WRT, will consider go back to factory firmware.
mwchang
DD-WRT Guru


Joined: 26 Mar 2013
Posts: 1855
Location: Hung Hom, Hong Kong

PostPosted: Mon Apr 23, 2018 4:09    Post subject: Re: DNS settings not set accordingly. Reply with quote
etherboy wrote:

192.168.1.1
1.0.0.1
8.8.8.8
9.9.9.9
71.10.216.1
71.10.216.2

why 1.0.0.1 is not the first DNS? Why does it add 192.168.1.1 (router IP) as first DNS and appended 2 Charter DNS (my ISP)?

After that, reboot all client PCs so that they could renew DHCP settings. Window$ has a problem forgetting old DHCP settings during a lease renewal.

You should also set DNS servers like this:
Setup -> Router IP:
Local DNS: 0.0.0.0
Setup -> Network Address Server Settings:
Static DNS 1: 1.0.0.1
Static DNS 2: 8.8.8.8
Static DNS 3: 9.9.9.9
Services -> Services -> DNSmasq:
Local DNS: Disable
Query DNS in strict order: Enable
Additional DNSMasq Options: blank it for the meantime to avoid surprises. Back up its content if needed

If you want all client PCs to take that 3 DNS servers directly without going through DNSmasq in the router, then don't turn off Local DNS and try these:

Setup -> Router IP:
Local DNS: 1.0.0.1
Setup -> Network Address Server Settings:
Static DNS 1: 1.0.0.1
Static DNS 2: 8.8.8.8
Static DNS 3: 9.9.9.9
Use DNSMasq for DNS: Disable
Services -> Services -> DNSmasq:
Local DNS: Enable

Again, reboot all client Window$ PCs afterwards to renew their leases properly.

I am not quite sure whether DD-WRT will always push 192.168.1.1 to client PCs as the first DNS server in DHCP queries. In that case, use the first group of settings. Smile

_________________
Router: Asus RT-N18U (rev. A1)

Drink, Blink, Stretch! Live long and prosper! May the Force and farces be with you!

Facebook: https://www.facebook.com/changmanwai
Website: https://sites.google.com/site/changmw
SETI@Home profile: http://setiathome.berkeley.edu/view_profile.php?userid=211832
GitHub: https://github.com/changmw/changmw
etherboy
DD-WRT User


Joined: 08 Jun 2007
Posts: 70

PostPosted: Mon Apr 23, 2018 14:46    Post subject: Reply with quote
Giving up.

None of the above methods worked.

Revert back to factory firmware and it was set accordingly, although you can only set 2 DNS servers.

TP-LINK WR-710N v1.
KittyChampion
DD-WRT Novice


Joined: 19 Sep 2017
Posts: 23

PostPosted: Wed Apr 25, 2018 16:28    Post subject: Reply with quote
Yeah. This is a known issue introduced in DD-WRT about half a year ago when they added "Unlimited DNS" feature.

And here is the ticket
http://svn.dd-wrt.com/ticket/6020

DD-WRT is adding ISP DNS addresses in udhcpd.conf or resolv.dnsmasq along with what you've specified in Static DNS 1,2,3, Local DNS, etc.

I think "Don't import ISP DNS Addresses" or simply "Ignore ISP DNS" checkbox would make it convenient for everyone.

_________________
NETGEAR R6250 - DD-WRT v3.0-r35550M kongac 03/28/18
ASUS RT-AC68U - FreshTomato-R1D-2018.3.003-beta-Custom-64K
KONG Builds
DD-WRT Beta Builds
DD-WRT Active Tickets
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> General Questions All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum