From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mout.gmx.net (mout.gmx.net [212.227.17.22]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "mout.gmx.net", Issuer "TeleSec ServerPass DE-1" (verified OK)) by huchra.bufferbloat.net (Postfix) with ESMTPS id E573A21F3EC for ; Sun, 11 May 2014 04:54:06 -0700 (PDT) Received: from u-089-cab204a2.am1.uni-tuebingen.de ([134.2.89.3]) by mail.gmx.com (mrgmx103) with ESMTPSA (Nemesis) id 0MeQ43-1WS5Ul0sQx-00QB6h; Sun, 11 May 2014 13:54:00 +0200 Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (Mac OS X Mail 6.6 \(1510\)) From: Sebastian Moeller In-Reply-To: Date: Sun, 11 May 2014 13:54:00 +0200 Content-Transfer-Encoding: quoted-printable Message-Id: References: To: Aristar X-Mailer: Apple Mail (2.1510) X-Provags-ID: V03:K0:5dTku2ASol3PI1m70uiHK8/sCwdD1dZh12PEjaZkno6WcJyU7qi syCPAugfGVbHU4QPd7LV6vtPK7wZ79+k7gzYswZh2yKQf1l+B8Kc5osAeDGzFTlEXpZLFri pQhV69q6YTJCwqFTnTLP4ItAaaQpl1cVJI8wxyNiUsazSuXC436x6se0CwWtKbfSu3NMKP/ 0ig2Ob8U8whZXvMvgF0oQ== Cc: cerowrt-devel Subject: Re: [Cerowrt-devel] Upgraded to 3.10.38-1, DNS issues? X-BeenThere: cerowrt-devel@lists.bufferbloat.net X-Mailman-Version: 2.1.13 Precedence: list List-Id: Development issues regarding the cerowrt test router project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 May 2014 11:54:07 -0000 Hi Aristar, On May 9, 2014, at 18:17 , Aristar wrote: > Okay I figured it out. It was DNSSEC I didn't realize it was enabled > by default so I had to comment out the lines in /etc/dnsmasq.conf but > I still had to manually specify a nameservers in a separate config > under LUCI Network>DHCP and DNS>Resolv and Hosts Files>"Resolve file" > and all is well again. I think Dave changed the default for 3.10.38-2 to avoid the = negative proof checks, and that, at least on my system, made automatic = DNS configuration though my upstream router functional again. I had the = same issues as you with 3.10.38-1 and some earlier ones. So you might = want to test the latest cerowrt to see whether that solves the issue. (I = think there was some discussion of how DNS recurs or work differently = with DNSSEC than dnsmasq, which operates as a forwarder.) Best Regards Sebastian >=20 > Now to set up dnscrypt-proxy again which actually has a repository now > and instructions for building from source. (Seems more reliable than > DNSSEC anyways, though I have not read too much on DNSSEC). >=20 > src/gz exopenwrt http://exopenwrt.and.in.net/ar71xx/packages >=20 > https://forum.openwrt.org/viewtopic.php?id=3D36380&p=3D1 >=20 >=20 > On Fri, May 9, 2014 at 5:34 AM, Aristar = wrote: >> Sorry if this is a dumb question but I'm not sure what's changed = since >> 3.7.5 but I can't get DNS working. my resolv.conf says 127.0.0.1, the >> /tmp/resolv.conf.auto has valid dns servers and I can't resolve >> anything locally on the router via ssh or on any client device. I CAN >> get dns LOCAL only if I add a dns server to /etc/resolv.conf but >> clients using nameserver 172.30.42.1 can't >>=20 >> Any ideas? I did a fresh install/clean configs and it isn't working >> out of the box or with any GUI or manual editing I've tried. > _______________________________________________ > Cerowrt-devel mailing list > Cerowrt-devel@lists.bufferbloat.net > https://lists.bufferbloat.net/listinfo/cerowrt-devel