[Dnsmasq-discuss] dnsmasq not providing a response to client

Bill Warren billwarren at gmail.com
Sat Sep 10 00:29:10 BST 2016


Hi Albert,

My issues were caused by running dnsmasq in a FreeBSD jail.  Basic jails (using iocage as the jail manager, at least) use shared IP networking that is not a complete network stack.  All other services I host inside jails work fine, but apparently I will need to change to use VNET/VIMAGE networking for the jails to allow dnsmasq to respond properly.  

Sorry for the false alarm, since this is not a dnsmasq issue.  I did learn a good amount, though :-)

Best regards,

Bill


> On Sep 9, 2016, at 16:39, Albert ARIBAUD <albert.aribaud at free.fr> wrote:
> 
> Hi Bill,
> 
> Le Fri, 9 Sep 2016 16:10:35 -0400
> Bill Warren <billwarren at gmail.com> a écrit:
> 
>> Hi Albert,
>> 
>> I tried installing dnsmasq in a virtualized, fresh FreeBSD
>> installation ... and it is working.  I will go through my hardening
>> configurations to see what, if anything, I can isolate as the cause.
> 
> I would have said as much from reading the second tcpdump, which shows
> the answer from google to the dnsmasq server host (...1.14) but not the
> answer from the server host to the original client. I bet the iptables
> layer drops the packet for some reason.
> 
>> to be continued …
> 
> Let us know when you find out.
> 
> Amicalement,
> -- 
> Albert.




More information about the Dnsmasq-discuss mailing list