1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Intercept Dns port

Discussion in 'Tomato Firmware' started by shadowken, Nov 9, 2013.

  1. shadowken

    shadowken Networkin' Nut Member

    Recently , I noticed that the intercept dns port option in dnsmasq GUI doesn't work at all ... I have checked through "iptables -t nat -nvL" and the output below should work flawlessly but it's not :
    DNAT udp -- * * ! udp dpt:53 to:

    before I use this option I was using iptables to intercept the dns port by adding the below to firewall scripts and it's was working ok :
    "iptables -t nat -I PREROUTING -s -p udp --dport 53 -j DNAT --to"

    But If I don't use intercept dns option and add the below to firewall script :
    "iptables -t nat -I PREROUTING -s -p udp --dport 53 -j DNAT --to" ... I changed the dns ip address on the computer and it works as it should be , now anyone tries to change the dns ip address they won't be able to avoid the content filtering I configured on opendns .

    Have anyone noticed this issue ?

    The Intercept dns port option was working before and I hope this issue get fixed on next builds .
    I'm using Toastman the latest build 1.28.7503.2 VLAN .


    Sent from my GT-I9300 using Tapatalk
    Last edited: Nov 9, 2013

Share This Page