[Dnsmasq-discuss] Two instances of Dnsmasq on one VPN network
Simon Kelley
simon at thekelleys.org.uk
Thu Aug 9 17:28:16 BST 2007
J Silverman wrote:
> Hello Simon,
>
> I was just researching this a bit more and was thinking of using
> except-interface=<openvpn_interface>. Would the no-dhcp-interface be
> a better choice?
Both will work: the difference is that except-interface tells dnsmasq to
ignore DNS queries arriving on that interface, as well as DHCP and TFTP.
no-dhcp-interface stops DHCP and TFTP, but allows DNS. In your case you
probably won't have DNS queries crossing the bridge, but there's no
particular reason to block them.
Cheers,
Simon.
>
> Thanks, J Silverman
>
> Simon Kelley <simon at thekelleys.org.uk> wrote: J Silverman wrote:
>> Hi All,
>>
>> Here's my situation: I have two Openwrt running routers that have
>> a openvpn bridged network setup between them. Both routers also
>> have dnsmasq running on them, which seems to create some problems.
>> I have it set that each dnsmasq has a separate IP range so I don't
>> get duplicate IPs on the network. However, from what I can tell, a
>> race condition seems to happen between the two dnsmasq instances.
>> Every so often, a computer hooked up to the one router will get an
>> IP address (and default gateway info) from the other router running
>> dnsmasq. This causes issues with the VPN network since that
>> computer will now route all its traffic to the remote router and
>> internet connection. So basically, I want to have each instance of
>> dnsmasq only service the local lan and not over the VPN bridge. Is
>> there a way to do this?
>
> add something like
>
> no-dhcp-interface=
>
> to /etc/dnsmasq.conf in each router. That should stop them from
> reacting to DHCP broadcasts coming over VPN from the other router.
>
>
> HTH
>
> Simon.
>
>> Thanks, J Silverman
>>
>>
>> --------------------------------- Need a vacation? Get great deals
>> to amazing places on Yahoo! Travel.
>>
>>
>> ------------------------------------------------------------------------
>>
>>
>>
>> _______________________________________________ Dnsmasq-discuss
>> mailing list Dnsmasq-discuss at lists.thekelleys.org.uk
>> http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
>
>
>
>
> --------------------------------- Looking for a deal? Find great
> prices on flights and hotels with Yahoo! FareChase.
More information about the Dnsmasq-discuss
mailing list