[Dnsmasq-discuss] Dnsmasq 2.85 stopped resolving dns zones.

Geert Stappers stappers at stappers.nl
Sat Oct 22 19:44:04 UTC 2022 

On Tue, Oct 18, 2022 at 03:43:48PM +0300, Dach Shong wrote:
> Hello.
> 
> Dnsmasq 2.85 stopped resolving dns zones.

When did it stop?

 
> My system:
> Debian 11
> dnsmasq 2.85
> 
> cat /etc/dnsmasq.conf
> 
> listen-address=127.0.0.1
> bind-interfaces
> domain-needed
> no-dhcp-interface=lo
> bogus-priv
> filterwin2k
> interface=lo
> stop-dns-rebind
> clear-on-reload
> resolv-file=/etc/resolv.conf
> no-negcache
> cache-size=350
> 
> cat /etc/resolv.conf
> #nameserver 127.0.0.1
> nameserver 1.1.1.1
> nameserver 8.8.8.8
> 
> 
> dig @127.0.0.1 google.com
> 
> ; <<>> DiG 9.16.33-Debian <<>> @127.0.0.1 google.com
> ; (1 server found)
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 1706
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
> 
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 4096
> ;; QUESTION SECTION:
> ;google.com. IN A
> 
> ;; Query time: 3 msec
> ;; SERVER: 127.0.0.1#53(127.0.0.1)
> ;; WHEN: Tue Oct 18 08:18:25 MSK 2022
> ;; MSG SIZE  rcvd: 39
> 
> 
> dig @1.1.1.1 google.com
> 
> ; <<>> DiG 9.16.33-Debian <<>> @1.1.1.1 google.com
> ; (1 server found)
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 33849
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
> 
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 1232
> ;; QUESTION SECTION:
> ;google.com. IN A
> 
> ;; ANSWER SECTION:
> google.com. 202 IN A 142.250.206.110
> 
> ;; Query time: 15 msec
> ;; SERVER: 1.1.1.1#53(1.1.1.1)
> ;; WHEN: Tue Oct 18 08:20:55 MSK 2022
> ;; MSG SIZE  rcvd: 55
> 
> 
> netstat -ntlp | grep :53
> tcp        0      0 127.0.0.1:53            0.0.0.0:*               LISTEN 279307/dnsmasq
> 
> 
> tail /var/log/dnsmasq.log
> Oct 18 12:33:02 dnsmasq[314051]: started, version 2.85 cachesize 350
> Oct 18 12:33:02 dnsmasq[314051]: compile time options: IPv6 GNU-getopt DBus
> no-UBus i18n IDN2 DHCP DHCPv6 no-Lua TFTP conntrack ipset auth cryptohash
> DNSSEC loop-detect inotify dumpfile
> Oct 18 12:33:02 dnsmasq[314051]: no servers found in /run/dnsmasq/resolv.conf, will retry

Did the retry happen?


> Oct 18 12:33:02 dnsmasq[314051]: read /etc/hosts - 2 addresses
> Oct 18 12:33:22 dnsmasq[314051]: query[A] google.com from 127.0.0.1
> Oct 18 12:33:22 dnsmasq[314051]: config error is REFUSED

Most like the 'REFUSED' that `dig` reported also as:
;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 1706



Groeten
Geert Stappers
-- 
Silence is hard to parse

More information about the Dnsmasq-discuss mailing list