[Dnsmasq-discuss] server= and address= raising errors for specific domain names
George Mochrie
geo at flakblag.xyz
Fri Dec 3 16:16:33 UTC 2021
Hi
I'm trying to set up a DNS sinkhole on my router with dnsmasq 2.86 and I'm
having problems with the backlists. I can't find anyone else with this problem
so I expect it's a mis-configuration on my part. I've also tried downgrading to
2.85 and the problem still occurs, so it's not an issue with the recent
rewrite of the --server= code.
It seems that --server= (and --address=) errors out if the domain contains a
dash (-) which doesn't have an alphanumeric character on both sides of it.
This causes my blacklist to fail to load. Publicly available blacklists
designed for dnsmasq such as those at [https://github.com/blocklistproject/
Lists] also fail to load, it's not my list. Dnsmasq will still happily return
queries for these domains.
I'm using Arch Linux with the package from the official repositories. Any
pointers would be appreciated.
My config is moderately convoluted, the main file is...
domain-needed
bogus-priv
no-hosts
resolv-file=/etc/dnsmasq.d/resolv.conf
enable-ra
expand-hosts
localise-queries
bind-interfaces
cache-size=1000
domain=flakblag.xyz
listen-address=127.0.0.1,::1
dnssec
conf-file=/usr/share/dnsmasq/trust-anchors.conf
dnssec-check-unsigned
host-record=loki.flakblag.xyz,127.0.0.1,::1
dhcp-optsfile=/etc/dnsmasq.d/global.options
conf-file=/etc/dnsmasq.d/static.hosts
conf-file=/etc/dnsmasq.d/global.aliases
conf-dir=/etc/dnsmasq.d/interfaces
address=/use-application-dns.net/
#conf-file=/etc/dnsmasq.d/blacklist.conf
FWIW: I love dnsmasq, it makes my life better, usually :)
--
G
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/attachments/20211203/b4163c7a/attachment.sig>
More information about the Dnsmasq-discuss
mailing list