[Dnsmasq-discuss] dnsmaq on OpenWRT, configuration question

Art Greenberg art at artg.tv
Sun Jul 28 15:52:02 BST 2019

On Sun, Jul 28, 2019, at 10:41, Kevin Darbyshire-Bryant wrote:

> dnsmasq won’t be intercepting requests, it will answer requests that 
> are sent to it.  It doesn’t snoop on the wire looking for requests to 
> hijack.

So, how does DNS on my network work then? All of the machines on my network are configured via DHCP to go to the router at for DNS requests. Doesn't dnsmasq see those requests, and forward on the ones it cannot answer locally to the configured servers?

> That sort of behaviour can be configured with firewall rules, ie. 
> redirect any packets sent to port 53 on this host to another host/port 
> combination.  Indeed adblock itself has this exact option to do so, 
> it’s called 'option adb_forcedns’.  It would be worth checking this is 
> set to ‘0’.

I'm not using AdBlock. Instead, I have specified the addn-hosts option in dnsmasq and those files contain blocked servers with an IP address of
> Also it would be worth checking on the router that something else 
> hasn’t done this sort of redirection.

Yes. I'm new to iptables et. al. so its becoming quite the learning opportunity.
> adblock implements it with the following rules:

There should be no AdBlock related rules in my firewall as I'm not using it, but I'll be looking at what is there.
> Cheers,
> Kevin D-B

Art Greenberg
art at artg.tv

More information about the Dnsmasq-discuss mailing list