[Dnsmasq-discuss] Two instances of Dnsmasq on one VPN network

Simon Kelley simon at thekelleys.org.uk
Thu Aug 9 17:28:16 BST 2007


J Silverman wrote:
> Hello Simon,
> 
> I was just researching this a bit more and was thinking of using
> except-interface=<openvpn_interface>.  Would the no-dhcp-interface be
> a better choice?

Both will work: the difference is that except-interface tells dnsmasq to
ignore DNS queries arriving on that interface, as well as DHCP and TFTP.
no-dhcp-interface stops DHCP and TFTP, but allows DNS. In your case you
probably won't have DNS queries crossing the bridge, but there's no
particular reason to block them.

Cheers,

Simon.


> 
> Thanks, J Silverman
> 
> Simon Kelley <simon at thekelleys.org.uk> wrote: J Silverman wrote:
>> Hi All,
>> 
>> Here's my situation:  I have two Openwrt running routers that have
>> a openvpn bridged network setup between them.  Both routers also
>> have dnsmasq running on them, which seems to create some problems.
>> I have it set that each dnsmasq has a separate IP range so I don't
>> get duplicate IPs on the network.  However, from what I can tell, a
>> race condition seems to happen between the two dnsmasq instances.
>> Every so often, a computer hooked up to the one router will get an
>> IP address (and default gateway info) from the other router running
>>  dnsmasq.  This causes issues with the VPN network since that
>> computer will now route all its traffic to the remote router and
>> internet connection.  So basically, I want to have each instance of
>> dnsmasq only service the local lan and not over the VPN bridge.  Is
>> there a way to do this?
> 
> add something like
> 
> no-dhcp-interface=
> 
> to /etc/dnsmasq.conf in each router. That should stop them from
> reacting to DHCP broadcasts coming over VPN from the other router.
> 
> 
> HTH
> 
> Simon.
> 
>> Thanks, J Silverman
>> 
>> 
>> --------------------------------- Need a vacation? Get great deals
>> to amazing places on Yahoo! Travel.
>> 
>> 
>> ------------------------------------------------------------------------
>> 
>> 
>> 
>> _______________________________________________ Dnsmasq-discuss 
>> mailing list Dnsmasq-discuss at lists.thekelleys.org.uk 
>> http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
> 
> 
> 
> 
> --------------------------------- Looking for a deal? Find great
> prices on flights and hotels with Yahoo! FareChase.




More information about the Dnsmasq-discuss mailing list