[Dnsmasq-discuss] "--all-servers" always on?

John Siu john.sd.siu at gmail.com
Tue Dec 10 08:17:41 GMT 2019


Following is my config:

# DNS

#dns-forward-max=4

# LOG
#log-queries=extra # log all query for debugging
#log-dhcp
quiet-dhcp
quiet-dhcp6
quiet-ra

except-interface=enp1s0
#listen-address=::1,127.0.0.1,172.168.168.1
no-poll # don't poll /etc/resolv.con for change
no-resolv # don't use /etc/resolv.conf
bogus-priv #
domain-needed # don't query upstream with hostname only
expand-hosts # expend hostname with local domain
rebind-localhost-ok
#stop-dns-rebind # don't replace entry with local ip

neg-ttl=3600
min-cache-ttl=3600
cache-size=10000
#log-async=10

## local domain
domain=int.johnsiu.com
local=/int.johnsiu.com/
rebind-domain-ok=/int.johnsiu.com/

## Server
servers-file=/etc/dnsmasq.d/extra/dns_srv.conf
## forward dns : ipv4
#server=8.8.8.8
#server=8.8.4.4
#server=1.1.1.1
#server=1.0.0.1
#server=209.18.47.61
#server=209.18.47.62
#server=209.18.47.63

## forward dns : ipv6
#server=2001:4860:4860::8888
#server=2001:4860:4860::8844
#server=2606:4700:4700::1111
#server=2606:4700:4700::1001
#server=2001:1998:f00:1::1
#server=2001:1998:f00:2::1

# dhcp : ipv4

## LAN
dhcp-range=tag:lan,172.16.168.130,172.16.168.250,72h
dhcp-option=tag:lan,option:router,172.16.168.1 # option 3 default gw
dhcp-option=tag:lan,6,172.16.168.1 # option 6 dns
dhcp-option=tag:lan,option:ntp-server,172.16.168.1
## DMZ
dhcp-range=tag:dmz,10.10.10.100,10.10.10.120,72h
dhcp-option=tag:dmz,option:router,10.10.10.1 # option 3 default gw
dhcp-option=tag:dmz,6,10.10.10.1 # option 6 dns
dhcp-option=tag:dmz,option:ntp-server,10.10.10.1

# dhcp : ipv6

enable-ra
# Construct a valid IPv6 range from reading the address set on the
interface.
# The ::1 part refers to the ifid in dhcp6c.conf. Make sure you get this
right or dnsmasq will get confused.
dhcp-range=tag:lan,::1,constructor:lan,ra-names,12h
dhcp-range=tag:dmz,::1,constructor:dmz,ra-names,12h

# Static dhcp
dhcp-hostsfile=/etc/dnsmasq.d/extra/lan_dmz.host


On Tue, Dec 10, 2019 at 3:07 AM Siji Sunny <siji.sunny at sugarboxnetworks.com>
wrote:

> Will you please share dnsmasq.conf here.
>
>
> On Tue, Dec 10, 2019 at 12:52 PM John Siu <john.sd.siu at gmail.com> wrote:
>
>> I tried with "default" in its own line, that gives error too.
>>
>> On Tue, Dec 10, 2019 at 2:16 AM Siji Sunny <
>> siji.sunny at sugarboxnetworks.com> wrote:
>>
>>>
>>> There is no "default" option. It actually give error if I add it by
>>>> itself or "all-servers=default".
>>>>
>>> It not "all-servers=default", just "default"
>>>
>>>
>>>> I went through the man page again and there is no other option
>>>> affecting this behavior. I am starting to think this is a bug.
>>>>
>>>> On Tue, Dec 10, 2019 at 1:03 AM Siji Sunny <
>>>> siji.sunny at sugarboxnetworks.com> wrote:
>>>>
>>>>>
>>>>> It should be off, base on manpage. And I don't know how to set a "off"
>>>>>> to it.
>>>>>>
>>>>>
>>>>> Adding "default" inside the config file, may help you. With reference
>>>>> to man page, default option will send queries to just one server.
>>>>>
>>>>>
>>>>>> On Tue, Dec 10, 2019 at 12:45 AM Siji Sunny <
>>>>>> siji.sunny at sugarboxnetworks.com> wrote:
>>>>>>
>>>>>>>
>>>>>>> Base on my understanding of the manpage, "all-servers" means dnsmasq
>>>>>>>> will send query to all servers at once and use the 1st response.
>>>>>>>>
>>>>>>>> I am seeing all my queries, if not already in cache, are sent to
>>>>>>>> all servers configured. But I don't have "all-servers" set. I want to turn
>>>>>>>> off this behavior.
>>>>>>>>
>>>>>>>
>>>>>>> Interesting, we used to enable it by adding the entry all-servers @
>>>>>>> dnsmasq.conf file. And by default its turned-off.
>>>>>>>
>>>>>>>
>>>>>>>>
>>>>>>>> On Tue, Dec 10, 2019 at 12:29 AM Siji Sunny <
>>>>>>>> siji.sunny at sugarboxnetworks.com> wrote:
>>>>>>>>
>>>>>>>>>
>>>>>>>>> OS: Ubuntu 18.04 with all updates
>>>>>>>>>> dnsmasq version: 2.79-1
>>>>>>>>>>
>>>>>>>>>> According to man page:
>>>>>>>>>>
>>>>>>>>>> --all-servers
>>>>>>>>>>     By default, when dnsmasq has more than one upstream server
>>>>>>>>>> available, it will send queries to just one server. Setting this flag
>>>>>>>>>> forces dnsmasq to send all queries to all available servers. The reply
>>>>>>>>>>  from  the  server  which  answers first will be returned to the original
>>>>>>>>>> requester.
>>>>>>>>>>
>>>>>>>>>> I don't have that flag in command line or in the config file.
>>>>>>>>>> However with "log-queries=extra" in config file, I am seeing following:
>>>>>>>>>>
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> query[A] news.com from 10.10.10.101
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 2001:1998:f00:2::1
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 2001:1998:f00:1::1
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 2606:4700:4700::1001
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 2606:4700:4700::1111
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 2001:4860:4860::8844
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 2001:4860:4860::8888
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 209.18.47.63
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 209.18.47.62
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 209.18.47.61
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 1.0.0.1
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 1.1.1.1
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 8.8.4.4
>>>>>>>>>> Dec 09 11:29:24 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> forwarded news.com to 8.8.8.8
>>>>>>>>>> Dec 09 11:29:25 door dnsmasq[9403]: 3640 10.10.10.101/49351
>>>>>>>>>> reply news.com is 35.190.79.82
>>>>>>>>>>
>>>>>>>>>> Is --all-servers behavior changed to default on? Is there a way
>>>>>>>>>> to revert it?
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Dear John,
>>>>>>>>> If I understood correctly, option all-servers will enable dnsmasq
>>>>>>>>> to send the resolve query to the secondary dns server defined, if its
>>>>>>>>> failed to resolve from the first one.
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> Thank you!
>>>>>>>>>>
>>>>>>>>>> John Siu
>>>>>>>>>> _______________________________________________
>>>>>>>>>> Dnsmasq-discuss mailing list
>>>>>>>>>> Dnsmasq-discuss at lists.thekelleys.org.uk
>>>>>>>>>> http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> Siji
>>>>>>>>>
>>>>>>>>> <https://www.facebook.com/SugarBoxNetworks/>  |
>>>>>>>>> <https://www.instagram.com/sugarboxnetworks/> |
>>>>>>>>> <https://in.linkedin.com/company/margo-networks-pvt.-ltd.>
>>>>>>>>>
>>>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> Siji
>>>>>>>
>>>>>>> <https://www.facebook.com/SugarBoxNetworks/>  |
>>>>>>> <https://www.instagram.com/sugarboxnetworks/> |
>>>>>>> <https://in.linkedin.com/company/margo-networks-pvt.-ltd.>
>>>>>>>
>>>>>>>
>>>>>
>>>>> --
>>>>> Siji
>>>>>
>>>>> <https://www.facebook.com/SugarBoxNetworks/>  |
>>>>> <https://www.instagram.com/sugarboxnetworks/> |
>>>>> <https://in.linkedin.com/company/margo-networks-pvt.-ltd.>
>>>>>
>>>>>
>>>
>>> --
>>> Siji
>>>
>>> <https://www.facebook.com/SugarBoxNetworks/>  |
>>> <https://www.instagram.com/sugarboxnetworks/> |
>>> <https://in.linkedin.com/company/margo-networks-pvt.-ltd.>
>>>
>>>
>
> --
> Siji
>
> <https://www.facebook.com/SugarBoxNetworks/>  |
> <https://www.instagram.com/sugarboxnetworks/> |
> <https://in.linkedin.com/company/margo-networks-pvt.-ltd.>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/attachments/20191210/54474637/attachment-0001.html>


More information about the Dnsmasq-discuss mailing list