[Dnsmasq-discuss] Upstream DNS-Server doesn't work

Andreas Fendt mail at andreas-fendt.de
Sun Aug 15 11:34:21 UTC 2021


Hello,

I have here dnsmasq running with version 2.80 on my OpenWRT router.

I have this primary config file:

{{{
# auto-generated config file from /etc/config/dhcp
conf-file=/etc/dnsmasq.conf
dhcp-authoritative
domain-needed
strict-order
localise-queries
read-ethers
enable-ubus
expand-hosts
bind-dynamic
local-service
domain=int.feuerwehr-ziemetshausen.local
server=/int.feuerwehr-ziemetshausen.local/
dhcp-leasefile=/tmp/dhcp.leases
servers-file=/etc/dnsmasq-server.conf
resolv-file=/tmp/resolv.conf.auto
stop-dns-rebind
rebind-localhost-ok
dhcp-broadcast=tag:needs-broadcast
addn-hosts=/tmp/hosts
conf-dir=/tmp/dnsmasq.d
user=dnsmasq
group=dnsmasq
dhcp-ignore-names=tag:dhcp_bogus_hostname
conf-file=/usr/share/dnsmasq/dhcpbogushostname.conf
bogus-priv
conf-file=/usr/share/dnsmasq/rfc6761.conf
dhcp-range=set:lan,192.168.1.100,192.168.1.249,255.255.255.0,12h
no-dhcp-interface=usb0
}}}

As you can see I have defined an additional servers-file:

{{{
server=/int.feuerwehr-ziemetshausen.de/192.168.2.51
server=/vpn.int.feuerwehr-ziemetshausen.de/8.8.8.8
}}}

Now my problem is that when I do an DNS-Query on this dnsmasq I don't get an response to sub-domains like ffwzie-dc01.int.feuerwehr-ziemetshausen.de:

{{{
dig @192.168.1.1 ffwzie-dc01.int.feuerwehr-ziemetshausen.de
; <<>> DiG 9.16.15-Debian <<>> @192.168.1.1 ffwzie-dc01.int.feuerwehr-ziemetshausen.de
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 16231
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4000
;; QUESTION SECTION:
;ffwzie-dc01.int.feuerwehr-ziemetshausen.de. IN A

;; Query time: 216 msec
;; SERVER: 192.168.1.1#53(192.168.1.1)
;; WHEN: So Aug 15 13:23:51 CEST 2021
;; MSG SIZE  rcvd: 71
}}}

I also ran Wireshark on the upstream dns-server 192.168.2.51. And I even can see that there is an incoming dns-query and a dns-response. But dnsmasq doesn't answer with that response.

I have no clue why.

Greetings,
Andreas Fendt






More information about the Dnsmasq-discuss mailing list