1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Charter cable dns redirecting......

Discussion in 'Tomato Firmware' started by FattysGoneWild, Sep 18, 2009.

  1. FattysGoneWild

    FattysGoneWild LI Guru Member

    I never have liked how my isp redirects with their dns. I recently just learned about dnsmasq. Basically that can address my issue with no redirection and just an error page that shows. Which is what I want. I do not know how to set this up with Tomato. I just got a tip on another forum. But, not sure exactly how to do it and set it up with Tomato. Can any one please help?

    in dnsmasq set www11.charter.net as a bogus name server response:
    bogus-nxdomain=64.158.56.56

    see http://www.enterprisenetworkingplanet.com/nethub/print.php/10950_3377351_2


    ***EDIT***

    I also just done a nslookup and got the following.

    Microsoft Windows XP [Version 5.1.2600]
    (C) Copyright 1985-2001 Microsoft Corp.

    C:\Documents and Settings\Owner>nslookup »www.thisisnotarealdomainatall.co
    m
    Server: unknown
    Address: 192.168.1.1

    Non-authoritative answer:
    Name: »www.thisisnotarealdomainatall.com
    Addresses: 206.112.100.132, 63.251.179.56

    Would I put those 2 ip's in bold in dnsmasq?
     
  2. FattysGoneWild

    FattysGoneWild LI Guru Member

    I got it taken care of by putting the following in the dnsmasq box.

    bogus-nxdomain=63.251.179.56
    bogus-nxdomain=206.112.100.132


    Seems to be working great with no more redirecting.
     
  3. FattysGoneWild

    FattysGoneWild LI Guru Member

    I have some more questions since discovering this dnsmasq. If my isp happens to have a dns outage. Which has happened plenty of times. I would like to use opendns as back ups. How would I configure that with dnsmasq? Basically with my isp always having priority and opendns as a fall back. Also. Since opendns does have redirection. If my isp dns went down and opendns kicked in. How do I block dns redirection with opendns using dnsmasq when it is in use as a back up?
     
  4. FattysGoneWild

    FattysGoneWild LI Guru Member

    Think I might have figured every thing out. Can any one confirm and make sure this is right?

    Use Received DNS With
    Static DNS (checked)

    server=208.67.222.222
    server=208.67.220.220
    bogus-nxdomain=63.251.179.56
    bogus-nxdomain=206.112.100.132
    bogus-nxdomain=67.215.77.132


    Highlighted in bold is opendns redirection address which is blocked now using dnsmasq. The other 2 are for blocking my isp redirection. I also looked in the log. Tomato is indeed picking each dns address in order for me from fastest to slowest.
     
  5. FattysGoneWild

    FattysGoneWild LI Guru Member

    Okay. This is not working the way I thought it was. It is going back and fourth between using my isp's dns and opendns. Please guys. Can any one help at all? I probably have no reply's because it is simple and in the search. I found a thread but it is beyond my understanding. http://www.linksysinfo.org/forums/showthread.php?t=58039&highlight=dnsmasq Post number 8 says it all. And I am basically wanting to do the exact same thing as the OP. Just reversed. To break it down.

    1. Charter cable internet.
    2. Dynamic ip/dns
    3. I want isp dns to be priority. Especially if dns numbers happen to change.
    4. I only want opendns as a back up. In case my isp has a dns issue or outage.

    dnsmasq wise. This is how things currently look.

    Use Received DNS With
    Static DNS (checked)

    server=208.67.222.222
    server=208.67.220.220
    bogus-nxdomain=63.251.179.56
    bogus-nxdomain=206.112.100.132
    bogus-nxdomain=67.215.77.132
    address=/google.com/74.125.67.100
    address=/google.com/74.125.127.100
    address=/google.com/74.125.45.100
    address=/www.google.com/74.125.127.103
    address=/www.google.com/74.125.127.104
    address=/www.google.com/74.125.127.105
    address=/www.google.com/74.125.127.106
    address=/www.google.com/74.125.127.147
    address=/www.google.com/74.125.127.99
     
  6. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    Add
    Code:
    strict-order
    to your Dnsmasq custom config.
     
  7. FattysGoneWild

    FattysGoneWild LI Guru Member

    Do you advise unchecking this option?

    Use Received DNS With
    Static DNS (checked)


    I think it is redundant since I am not putting those other dns ip's in the static boxes under basic?

     
  8. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    I have no opinion on whether you should use that option. If you want to use your ISP DNS servers, have it checked. If you don't, don't.
     
  9. FattysGoneWild

    FattysGoneWild LI Guru Member

    Looking at my logs. First part shows it in proper order. But, when going to websites. Why does it read the other way around?

    Dec 31 16:00:37 unknown daemon.info dnsmasq[117]: reading /etc/resolv.dnsmasq
    Dec 31 16:00:37 unknown daemon.info dnsmasq[117]: using nameserver 68.116.46.70#53
    Dec 31 16:00:37 unknown daemon.info dnsmasq[117]: using nameserver 68.116.46.115#53
    Dec 31 16:00:37 unknown daemon.info dnsmasq[117]: using nameserver 208.67.220.220#53
    Dec 31 16:00:37 unknown daemon.info dnsmasq[117]: using nameserver 208.67.222.222#53

    Sep 25 17:29:29 unknown daemon.debug dnsmasq[670]: query[A] www.cnn.com from 192.168.1.24
    Sep 25 17:29:29 unknown daemon.debug dnsmasq[670]: forwarded www.cnn.com to 208.67.222.222
    Sep 25 17:29:29 unknown daemon.debug dnsmasq[670]: forwarded www.cnn.com to 208.67.220.220
    Sep 25 17:29:29 unknown daemon.debug dnsmasq[670]: forwarded www.cnn.com to 68.116.46.115
    Sep 25 17:29:29 unknown daemon.debug dnsmasq[670]: forwarded www.cnn.com to 68.116.46.70
     
  10. SgtPepperKSU

    SgtPepperKSU Network Guru Member

    By default, Dnsmasq "simultaneously" tries all of the servers for the first query (and possibly periodically afterwards). Whichever one returns soonest is used for all queries until it doesn't work.

    To get them to only be used in the order defined, add "strict-order" to the Dnsmasq custom config.

    EDIT: Ugh. I just realized I already offered that advice a few posts up in this thread. Where you already using it when you saw those results?
     
  11. FattysGoneWild

    FattysGoneWild LI Guru Member

    Sorry. That was with out the strict-order command. I just put it in and found this.


    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: forwarded money.cnn.com to 208.67.222.222
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply money.cnn.com is <CNAME>
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply www.money.com is 157.166.224.109
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply www.money.com is 157.166.226.108
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply www.money.com is 157.166.226.109
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply www.money.com is 157.166.255.24
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply www.money.com is 157.166.255.25
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply www.money.com is 157.166.224.108
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: query[A] sportsillustrated.cnn.com from 192.168.1.24
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: forwarded sportsillustrated.cnn.com to 208.67.222.222
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply sportsillustrated.cnn.com is <CNAME>
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply cnnsi.com is 157.166.255.23
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply cnnsi.com is 157.166.224.104
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply cnnsi.com is 157.166.224.105
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply cnnsi.com is 157.166.226.104
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply cnnsi.com is 157.166.226.105
    Sep 25 21:50:13 unknown daemon.debug dnsmasq[918]: reply cnnsi.com is 157.166.255.22

    Yet in the Tomato log we see this. Every thing in proper order.

    Dec 31 16:00:37 unknown daemon.info dnsmasq[117]: reading /etc/resolv.dnsmasq
    Dec 31 16:00:37 unknown daemon.info dnsmasq[117]: using nameserver 68.116.46.70#53
    Dec 31 16:00:37 unknown daemon.info dnsmasq[117]: using nameserver 68.116.46.115#53
    Dec 31 16:00:37 unknown daemon.info dnsmasq[117]: using nameserver 208.67.220.220#53
    Dec 31 16:00:37 unknown daemon.info dnsmasq[117]: using nameserver 208.67.222.222#53


    But then using log-queries it shows this. A complete reversal.

    Sep 25 17:29:29 unknown daemon.debug dnsmasq[670]: query[A] www.cnn.com from 192.168.1.24
    Sep 25 17:29:29 unknown daemon.debug dnsmasq[670]: forwarded www.cnn.com to 208.67.222.222
    Sep 25 17:29:29 unknown daemon.debug dnsmasq[670]: forwarded www.cnn.com to 208.67.220.220
    Sep 25 17:29:29 unknown daemon.debug dnsmasq[670]: forwarded www.cnn.com to 68.116.46.115
    Sep 25 17:29:29 unknown daemon.debug dnsmasq[670]: forwarded www.cnn.com to 68.116.46.70


    Either I am just really slow and completely not grasping this. Or this is just the way Tomato works. I don't know. Why would it show in the logs with dns being in proper order. Yet doing a log-queries it does a complete reversal of what it should be doing as shown previously in the Tomato log. :confused:
     
  12. rhester72

    rhester72 Network Guru Member

    The "using" lines simply indicates in what order Tomato discovered them, *not* what order they will be used (unless strict-order is specified).

    Rodney
     

Share This Page