[Dnsmasq-discuss] how to stop inappropriate appending of localnet?

Simon Kelley simon@thekelleys.org.uk
Sun, 06 Feb 2005 22:09:30 +0000 

Grant wrote:
> Hi all,
> 
> System is dnsmasq 2.20 on slackware-current firewall box, serving 
> a winxp sp2 client on 192.168.1.31 -- the winxp box also runs privoxy 
> to filter out popups, javascript, adverts, etc.  
> 
> 
> Here is an example from the dnsmasq log:
> 
> Feb  5 11:34:49 deltree dnsmasq[1432]: query www.itc-electronics.com[A] from 192.168.1.31
> Feb  5 11:34:49 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.56.150
> Feb  5 11:34:50 deltree dnsmasq[1432]: query www.itc-electronics.com[A] from 192.168.1.31
> Feb  5 11:34:50 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.27.58
> Feb  5 11:34:50 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.56.150
> Feb  5 11:34:51 deltree dnsmasq[1432]: query www.itc-electronics.com[A] from 192.168.1.31
> Feb  5 11:34:51 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.27.58
> Feb  5 11:34:51 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.56.150
> Feb  5 11:34:51 deltree dnsmasq[1432]: query www.itc-electronics.com.localnet[A] from 192.168.1.31
> Feb  5 11:34:51 deltree dnsmasq[1432]: config www.itc-electronics.com.localnet is <NXDOMAIN>-IPv4
> Feb  5 11:34:51 deltree dnsmasq[1432]: query www.itc-electronics.com[A] from 192.168.1.31
> Feb  5 11:34:51 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.27.58
> Feb  5 11:34:52 deltree dnsmasq[1432]: query www.itc-electronics.com[A] from 192.168.1.31
> Feb  5 11:34:52 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.56.150
> Feb  5 11:34:52 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.27.58
> Feb  5 11:34:53 deltree dnsmasq[1432]: query www.itc-electronics.com[A] from 192.168.1.31
> Feb  5 11:34:53 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.56.150
> Feb  5 11:34:53 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.27.58
> Feb  5 11:34:53 deltree dnsmasq[1432]: query www.itc-electronics.com.localnet[A] from 192.168.1.31
> Feb  5 11:34:53 deltree dnsmasq[1432]: config www.itc-electronics.com.localnet is <NXDOMAIN>-IPv4
> Feb  5 11:35:09 deltree dnsmasq[1432]: query www.itc-electronics.com[A] from 192.168.1.31
> Feb  5 11:35:09 deltree dnsmasq[1432]: forwarded www.itc-electronics.com to 203.194.27.58
> Feb  5 11:35:09 deltree dnsmasq[1432]: reply www.itc-electronics.com is 195.46.33.207
> Feb  5 11:35:09 deltree dnsmasq[1432]: reply www.itc-electronics.com is 217.117.81.82
> 
> The problem is the windows box tacking on 'localnet' to what is an 
> external name, while the original query is still 'in flight'.
> 
> While dnsmasq is doing the right thing, it certainly is not what is 
> intended!  And, you can see the manual retry at 11:35:09 succeeded.  
> 

The appending of "localnet" is being done by the WinXP client, not 
dnsmasq, so it can't be stopped by a dnsmasq re-config. As you say, 
configuring dnsmasq to return "No such domain" to these is the correct 
thing to do.

You need either faster-responding upstream nameservers, or a longer 
timeout before the resolver in XP gives up on the first query and starts 
trying other variations. There's probably a registry entry to control 
the later, the former is beyond the scope if this reply.....



Cheers,

Simon.