dnsmasq not forwarding request to nameserverDnsmasq resolves local hostname to 127.0.0.1 all over the netHow...
Pre-Employment Background Check With Consent For Future Checks
Air travel with refrigerated insulin
Mortal danger in mid-grade literature
categorizing a variable turns it from insignificant to significant
Why is "la Gestapo" feminine?
Checking @@ROWCOUNT failing
What is the meaning of "You've never met a graph you didn't like?"
Weird lines in Microsoft Word
Comic-book: Kids find a dead female superhero in the woods
Exposing a company lying about themselves in a tightly knit industry (videogames) : Is my career at risk on the long run?
In the event of Brexit being postponed beyond the EU elections, will UK voters in EU countries be eligible to participate?
Can a Knock spell open the door to Mordenkainen's Magnificent Mansion?
PTIJ: Which Dr. Seuss books should one obtain?
is this saw blade faulty?
Make a Bowl of Alphabet Soup
Can creatures abilities target that creature itself?
Travelling in US for more than 90 days
Why is participating in the European Parliamentary elections used as a threat?
Output visual diagram of picture
Why does the frost depth increase when the surface temperature warms up?
What 1968 Moog synthesizer was used in the Movie Apollo 11?
What's the meaning of "what it means for {something} to be {something}"?
What should be the ideal length of sentences in a blog post for ease of reading?
Are hand made posters acceptable in Academia?
dnsmasq not forwarding request to nameserver
Dnsmasq resolves local hostname to 127.0.0.1 all over the netHow to downgrade dnsmasq?Disable dhcp service in dnsmasqdnsmasq - Multiple forwarding servers for domain entries?Make dnsmasq reject some namesWhat does dnsmasq 'add-subnet' for?How long does dnsmasq cache dns?dnsmasq causes “Bad request syntax”dnsmasq ignores queries from non local network
I'm trying to run two instances of dnsmasq on a raspberry pi, I've gotten quite far. I'm currently trying to get the first dnsmasq server to forward any request it doesn't know the answer to to the second server but it only seems to be working if I dig <address> @127.0.0.1. Using the external addresses of the either interface, or querying from another machine doesn't do it.
Querying either server directly gets the desired result, but trying to get the first server to forward results from the second... not so much.
Config for instance A (lan):
root@Raspberry-server:~# cat /etc/dnsmasq/dnsmasq.conf
port=53
except-interface=eth0.1
bind-interfaces
no-hosts
#changing the cache size makes no difference
#cache-size=5000
cache-size=0
# uncomment to forget about 404 responses
#no-negcache
#resolv-file=/etc/dnsmasq/resolv.lan.conf
#no-poll
no-resolv
strict-order
server=192.168.1.13
auth-server=raspberry.lan,eth0
auth-zone=lan,192.168.1.0/24
host-record=raspberry.lan,192.168.1.11
host-record=htpc.lan,192.168.1.10
host-record=tom.lan,192.168.1.12
Config for instance B (global):
root@Raspberry-server:~# cat /etc/dnsmasq/dnsmasq.blocker.conf
port=53
bind-interfaces
listen-address=192.168.1.13
no-hosts
addn-hosts=/etc/dnsmasq/blocked.host
cache-size=100000
# uncomment to forget about 404 responses
#no-negcache
resolv-file=/etc/dnsmasq/resolv.blocker.conf
#no-poll
strict-order
Instance A status log:
systemd[1]: Starting DNSMasq Lightweight DNS server...
dnsmasq[1651]: dnsmasq: syntax check OK.
dnsmasq[1656]: started, version 2.76 cache disabled
dnsmasq[1656]: compile time options: IPv6 GNU-getopt DBus i18n IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth DNSSEC loop-detect inotify
systemd[1]: Started DNSMasq Lightweight DNS server.
dnsmasq[1656]: using nameserver 192.168.1.13#53
dnsmasq
asked Oct 14 '18 at 10:24
GelunoxGelunox
1012
add a comment |
I'm trying to run two instances of dnsmasq on a raspberry pi, I've gotten quite far. I'm currently trying to get the first dnsmasq server to forward any request it doesn't know the answer to to the second server but it only seems to be working if I dig <address> @127.0.0.1. Using the external addresses of the either interface, or querying from another machine doesn't do it.
Querying either server directly gets the desired result, but trying to get the first server to forward results from the second... not so much.
Config for instance A (lan):
root@Raspberry-server:~# cat /etc/dnsmasq/dnsmasq.conf
port=53
except-interface=eth0.1
bind-interfaces
no-hosts
#changing the cache size makes no difference
#cache-size=5000
cache-size=0
# uncomment to forget about 404 responses
#no-negcache
#resolv-file=/etc/dnsmasq/resolv.lan.conf
#no-poll
no-resolv
strict-order
server=192.168.1.13
auth-server=raspberry.lan,eth0
auth-zone=lan,192.168.1.0/24
host-record=raspberry.lan,192.168.1.11
host-record=htpc.lan,192.168.1.10
host-record=tom.lan,192.168.1.12
Config for instance B (global):
root@Raspberry-server:~# cat /etc/dnsmasq/dnsmasq.blocker.conf
port=53
bind-interfaces
listen-address=192.168.1.13
no-hosts
addn-hosts=/etc/dnsmasq/blocked.host
cache-size=100000
# uncomment to forget about 404 responses
#no-negcache
resolv-file=/etc/dnsmasq/resolv.blocker.conf
#no-poll
strict-order
Instance A status log:
systemd[1]: Starting DNSMasq Lightweight DNS server...
dnsmasq[1651]: dnsmasq: syntax check OK.
dnsmasq[1656]: started, version 2.76 cache disabled
dnsmasq[1656]: compile time options: IPv6 GNU-getopt DBus i18n IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth DNSSEC loop-detect inotify
systemd[1]: Started DNSMasq Lightweight DNS server.
dnsmasq[1656]: using nameserver 192.168.1.13#53
dnsmasq
asked Oct 14 '18 at 10:24
GelunoxGelunox
1012
add a comment |
I'm trying to run two instances of dnsmasq on a raspberry pi, I've gotten quite far. I'm currently trying to get the first dnsmasq server to forward any request it doesn't know the answer to to the second server but it only seems to be working if I dig <address> @127.0.0.1. Using the external addresses of the either interface, or querying from another machine doesn't do it.
Querying either server directly gets the desired result, but trying to get the first server to forward results from the second... not so much.
Config for instance A (lan):
root@Raspberry-server:~# cat /etc/dnsmasq/dnsmasq.conf
port=53
except-interface=eth0.1
bind-interfaces
no-hosts
#changing the cache size makes no difference
#cache-size=5000
cache-size=0
# uncomment to forget about 404 responses
#no-negcache
#resolv-file=/etc/dnsmasq/resolv.lan.conf
#no-poll
no-resolv
strict-order
server=192.168.1.13
auth-server=raspberry.lan,eth0
auth-zone=lan,192.168.1.0/24
host-record=raspberry.lan,192.168.1.11
host-record=htpc.lan,192.168.1.10
host-record=tom.lan,192.168.1.12
Config for instance B (global):
root@Raspberry-server:~# cat /etc/dnsmasq/dnsmasq.blocker.conf
port=53
bind-interfaces
listen-address=192.168.1.13
no-hosts
addn-hosts=/etc/dnsmasq/blocked.host
cache-size=100000
# uncomment to forget about 404 responses
#no-negcache
resolv-file=/etc/dnsmasq/resolv.blocker.conf
#no-poll
strict-order
Instance A status log:
systemd[1]: Starting DNSMasq Lightweight DNS server...
dnsmasq[1651]: dnsmasq: syntax check OK.
dnsmasq[1656]: started, version 2.76 cache disabled
dnsmasq[1656]: compile time options: IPv6 GNU-getopt DBus i18n IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth DNSSEC loop-detect inotify
systemd[1]: Started DNSMasq Lightweight DNS server.
dnsmasq[1656]: using nameserver 192.168.1.13#53
dnsmasq
asked Oct 14 '18 at 10:24
GelunoxGelunox
1012
I'm trying to run two instances of dnsmasq on a raspberry pi, I've gotten quite far. I'm currently trying to get the first dnsmasq server to forward any request it doesn't know the answer to to the second server but it only seems to be working if I dig <address> @127.0.0.1. Using the external addresses of the either interface, or querying from another machine doesn't do it.
Querying either server directly gets the desired result, but trying to get the first server to forward results from the second... not so much.
Config for instance A (lan):
root@Raspberry-server:~# cat /etc/dnsmasq/dnsmasq.conf
port=53
except-interface=eth0.1
bind-interfaces
no-hosts
#changing the cache size makes no difference
#cache-size=5000
cache-size=0
# uncomment to forget about 404 responses
#no-negcache
#resolv-file=/etc/dnsmasq/resolv.lan.conf
#no-poll
no-resolv
strict-order
server=192.168.1.13
auth-server=raspberry.lan,eth0
auth-zone=lan,192.168.1.0/24
host-record=raspberry.lan,192.168.1.11
host-record=htpc.lan,192.168.1.10
host-record=tom.lan,192.168.1.12
Config for instance B (global):
root@Raspberry-server:~# cat /etc/dnsmasq/dnsmasq.blocker.conf
port=53
bind-interfaces
listen-address=192.168.1.13
no-hosts
addn-hosts=/etc/dnsmasq/blocked.host
cache-size=100000
# uncomment to forget about 404 responses
#no-negcache
resolv-file=/etc/dnsmasq/resolv.blocker.conf
#no-poll
strict-order
Instance A status log:
systemd[1]: Starting DNSMasq Lightweight DNS server...
dnsmasq[1651]: dnsmasq: syntax check OK.
dnsmasq[1656]: started, version 2.76 cache disabled
dnsmasq[1656]: compile time options: IPv6 GNU-getopt DBus i18n IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth DNSSEC loop-detect inotify
systemd[1]: Started DNSMasq Lightweight DNS server.
dnsmasq[1656]: using nameserver 192.168.1.13#53
dnsmasq
dnsmasq
asked Oct 14 '18 at 10:24
GelunoxGelunox
1012
asked Oct 14 '18 at 10:24
GelunoxGelunox
1012
edited Oct 14 '18 at 14:53
Gelunox
asked Oct 14 '18 at 10:24
GelunoxGelunox
1012
asked Oct 14 '18 at 10:24
GelunoxGelunox
1012
asked Oct 14 '18 at 10:24
GelunoxGelunox
1012
1012
add a comment |
add a comment |
2 Answers
2
active
oldest
votes
Turn on query logging (log-queries) and use dig/nslookup against each server in turn.
In your current setup serverB looks like it will never ask any other server for information. Server A should pass queries to Server B when it cannot answer them itself.
Dnsmasq servers attempt to resolve the query locally, forwarding only if necessary. Enabling query logging should show you which server you're hitting and when, and what they do with that query.
answered Oct 18 '18 at 21:56
brokenbonesbrokenbones
111
add a comment |
Have a look on /etc/default/dnsmasq. In some dist, this file avoid to read other "resolv.conf" file than /etc/resolv.conf....
answered 18 mins ago
user515127user515127
1
New contributor
user515127 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "2"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f935446%2fdnsmasq-not-forwarding-request-to-nameserver%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
Turn on query logging (log-queries) and use dig/nslookup against each server in turn.
In your current setup serverB looks like it will never ask any other server for information. Server A should pass queries to Server B when it cannot answer them itself.
Dnsmasq servers attempt to resolve the query locally, forwarding only if necessary. Enabling query logging should show you which server you're hitting and when, and what they do with that query.
answered Oct 18 '18 at 21:56
brokenbonesbrokenbones
111
add a comment |
Turn on query logging (log-queries) and use dig/nslookup against each server in turn.
In your current setup serverB looks like it will never ask any other server for information. Server A should pass queries to Server B when it cannot answer them itself.
Dnsmasq servers attempt to resolve the query locally, forwarding only if necessary. Enabling query logging should show you which server you're hitting and when, and what they do with that query.
answered Oct 18 '18 at 21:56
brokenbonesbrokenbones
111
add a comment |
Turn on query logging (log-queries) and use dig/nslookup against each server in turn.
In your current setup serverB looks like it will never ask any other server for information. Server A should pass queries to Server B when it cannot answer them itself.
Dnsmasq servers attempt to resolve the query locally, forwarding only if necessary. Enabling query logging should show you which server you're hitting and when, and what they do with that query.
answered Oct 18 '18 at 21:56
brokenbonesbrokenbones
111
Turn on query logging (log-queries) and use dig/nslookup against each server in turn.
In your current setup serverB looks like it will never ask any other server for information. Server A should pass queries to Server B when it cannot answer them itself.
Dnsmasq servers attempt to resolve the query locally, forwarding only if necessary. Enabling query logging should show you which server you're hitting and when, and what they do with that query.
answered Oct 18 '18 at 21:56
brokenbonesbrokenbones
111
answered Oct 18 '18 at 21:56
brokenbonesbrokenbones
111
answered Oct 18 '18 at 21:56
brokenbonesbrokenbones
111
answered Oct 18 '18 at 21:56
brokenbonesbrokenbones
111
111
add a comment |
add a comment |
Have a look on /etc/default/dnsmasq. In some dist, this file avoid to read other "resolv.conf" file than /etc/resolv.conf....
answered 18 mins ago
user515127user515127
1
New contributor
user515127 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
Have a look on /etc/default/dnsmasq. In some dist, this file avoid to read other "resolv.conf" file than /etc/resolv.conf....
answered 18 mins ago
user515127user515127
1
New contributor
user515127 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
Have a look on /etc/default/dnsmasq. In some dist, this file avoid to read other "resolv.conf" file than /etc/resolv.conf....
answered 18 mins ago
user515127user515127
1
New contributor
user515127 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
Have a look on /etc/default/dnsmasq. In some dist, this file avoid to read other "resolv.conf" file than /etc/resolv.conf....
answered 18 mins ago
user515127user515127
1
New contributor
user515127 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
answered 18 mins ago
user515127user515127
1
New contributor
user515127 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
answered 18 mins ago
user515127user515127
1
answered 18 mins ago
user515127user515127
1
1
New contributor
user515127 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
New contributor
user515127 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
user515127 is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
add a comment |
Thanks for contributing an answer to Server Fault!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f935446%2fdnsmasq-not-forwarding-request-to-nameserver%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
