1.1.1.1 not connecting to my city resolver

Bro i have already set up PBR in my router and now if I'm configuring 1.1.1.1 in dhcp and dns then the wg interface going down.

I thought you had solved this with cut cables?
Is it solved?

We would like to see the route taken.
Please execute:

If we can see that we see exactly how it is getting there.
If you don't want to do that, then leave it solved.

root@OpenWrt:~# mtr -ezbw -c 100 1.1.1.1
Start: 2025-02-05T17:13:47+0000
HOST: OpenWrt                                Loss%   Snt   Last   Avg  Best  Wrst StDev
  1. AS???    192.168.1.1 (192.168.1.1)       0.0%   100    0.8   0.8   0.6   1.3   0.1
  2. AS35819  176.224.192.1 (176.224.192.1)   0.0%   100    3.9   4.5   2.9  13.9   2.0
  3. AS???    10.83.95.137 (10.83.95.137)     0.0%   100    7.4   6.3   4.1  11.4   1.5
  4. AS???    10.83.95.137 (10.83.95.137)     1.0%   100    5.4   5.6   4.0  10.2   1.2
  5. AS???    ???                            100.0   100    0.0   0.0   0.0   0.0   0.0
  6. AS???    10.83.95.165 (10.83.95.165)     0.0%   100    6.1   6.2   3.5  13.7   1.4
  7. AS35819  86.51.80.81 (86.51.80.81)       1.0%   100    5.2   5.9   3.9  17.7   1.9
  8. AS35819  86.51.80.82 (86.51.80.82)       0.0%   100    6.2   6.1   3.9   8.7   0.8
  9. AS35819  86.51.66.71 (86.51.66.71)       1.0%   100   66.8  69.8  65.8 160.5  13.7
 10. AS???    ???                            100.0   100    0.0   0.0   0.0   0.0   0.0
 11. AS13335  162.158.20.29 (162.158.20.29)   1.0%   100   65.7  67.5  64.0  89.3   4.0
 12. AS13335  one.one.one.one (1.1.1.1)       0.0%   100   64.2  66.0  63.4 128.3   6.5
root@OpenWrt:~#

there you go

@brada4 @moeller0

image921×260 17.1 KB

now im connecting to my local dns server even with 1.1.1.1 i connected to my local isp dns resolver.

i have to enable ignore resolve file to be able to use cloudflare resolver and this is what i was doing from long time

Go to hosts files and disable resol.conf importing.

How where is host file located?

In your picture 3 tabs to the right
option is called "ignore resolv file" which must be checked to ignore dhcp dns servers

Confirmwith:

killall -USR1 dnsmasq
: wait some second(s)
logread -e dnsmasq

already mentioned it

done with above steps no no internet connectivity

What is shown in statistivs after kill in both sifes of "ignore resolv" chevkbox?

 OpenWrt 23.05.5, r24106-10cc5fcd00
 -----------------------------------------------------
root@BSDK:~# killall -USR1 dnsmasq
root@BSDK:~# logread -e dnsmasq
Wed Feb  5 20:43:33 2025 user.notice dnsmasq: DNS rebinding protection is active, will discard upstream RFC1918 responses!
Wed Feb  5 20:43:33 2025 user.notice dnsmasq: Allowing 127.0.0.0/8 responses
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: started, version 2.90 cachesize 1000
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: DNS service limited to local subnets
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: compile time options: IPv6 GNU-getopt no-DBus UBus no-i18n no-IDN DHCP no-DHCPv6 no-Lua TFTP no-conntrack no-ipset no-nftset no-auth no-cryptohash no-DNSSEC no-ID loop-detect inotify dumpfile
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: UBus support enabled: connected to system bus
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: using nameserver 1.1.1.1#53
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: using only locally-known addresses for test
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: using only locally-known addresses for onion
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: using only locally-known addresses for localhost
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: using only locally-known addresses for local
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: using only locally-known addresses for invalid
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: using only locally-known addresses for bind
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: using only locally-known addresses for lan
Wed Feb  5 20:43:34 2025 daemon.warn dnsmasq[1]: no servers found in /tmp/resolv.conf.d/resolv.conf.auto, will retry
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: read /etc/hosts - 12 names
Wed Feb  5 20:43:34 2025 daemon.info dnsmasq[1]: read /tmp/hosts/dhcp.cfg01411c - 0 names
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: exiting on receipt of SIGTERM
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: started, version 2.90 cachesize 1000
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: DNS service limited to local subnets
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: compile time options: IPv6 GNU-getopt no-DBus UBus no-i18n no-IDN DHCP no-DHCPv6 no-Lua TFTP no-conntrack no-ipset no-nftset no-auth no-cryptohash no-DNSSEC no-ID loop-detect inotify dumpfile
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: UBus support enabled: connected to system bus
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq-dhcp[1]: DHCP, IP range 10.0.1.100 -- 10.0.1.249, lease time 12h
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: using nameserver 1.1.1.1#53
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: using only locally-known addresses for test
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: using only locally-known addresses for onion
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: using only locally-known addresses for localhost
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: using only locally-known addresses for local
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: using only locally-known addresses for invalid
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: using only locally-known addresses for bind
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: using only locally-known addresses for lan
Wed Feb  5 20:43:41 2025 daemon.warn dnsmasq[1]: no servers found in /tmp/resolv.conf.d/resolv.conf.auto, will retry
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: read /etc/hosts - 12 names
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq[1]: read /tmp/hosts/dhcp.cfg01411c - 4 names
Wed Feb  5 20:43:41 2025 daemon.info dnsmasq-dhcp[1]: read /etc/ethers - 0 addresses
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: read /etc/hosts - 12 names
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: read /tmp/hosts/dhcp.cfg01411c - 4 names
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq-dhcp[1]: read /etc/ethers - 0 addresses
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq-dhcp[1]: DHCPREQUEST(br-lan) 10.0.1.233 22:fb:4e:02:5e:dc
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq-dhcp[1]: DHCPACK(br-lan) 10.0.1.233 22:fb:4e:02:5e:dc iPhone
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: reading /tmp/resolv.conf.d/resolv.conf.auto
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: using nameserver 1.1.1.1#53
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: using nameserver 86.51.35.24#53
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: using nameserver 86.51.34.24#53
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: using only locally-known addresses for test
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: using only locally-known addresses for onion
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: using only locally-known addresses for localhost
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: using only locally-known addresses for local
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: using only locally-known addresses for invalid
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: using only locally-known addresses for bind
Wed Feb  5 20:43:42 2025 daemon.info dnsmasq[1]: using only locally-known addresses for lan
Wed Feb  5 20:43:48 2025 daemon.info dnsmasq-dhcp[1]: DHCPREQUEST(br-lan) 10.0.1.146 5c:87:9c:7c:43:f4
Wed Feb  5 20:43:48 2025 daemon.info dnsmasq-dhcp[1]: DHCPACK(br-lan) 10.0.1.146 5c:87:9c:7c:43:f4 DESKTOP-ALF8NJ7
Wed Feb  5 20:48:16 2025 daemon.info dnsmasq[1]: time 1738777696
Wed Feb  5 20:48:16 2025 daemon.info dnsmasq[1]: cache size 1000, 0/567 cache insertions re-used unexpired cache entries.
Wed Feb  5 20:48:16 2025 daemon.info dnsmasq[1]: queries forwarded 303, queries answered locally 179
Wed Feb  5 20:48:16 2025 daemon.info dnsmasq[1]: pool memory in use 1200, max 1296, allocated 2400
Wed Feb  5 20:48:16 2025 daemon.info dnsmasq[1]: child processes for TCP requests: in use 0, highest since last SIGUSR1 0, max allowed 20.
Wed Feb  5 20:48:16 2025 daemon.info dnsmasq[1]: server 1.1.1.1#53: queries sent 191, retried 0, failed 2, nxdomain replies 0, avg. latency 85ms
Wed Feb  5 20:48:16 2025 daemon.info dnsmasq[1]: server 86.51.35.24#53: queries sent 132, retried 7, failed 0, nxdomain replies 0, avg. latency 8ms
Wed Feb  5 20:48:16 2025 daemon.info dnsmasq[1]: server 86.51.34.24#53: queries sent 18, retried 0, failed 0, nxdomain replies 0, avg. latency 20ms
root@BSDK:~#

Thanks, als the mtr is all over the place... but it seems to confirm that the path leaves Saudi Arabia... and the Best latency numbers sort of fit to that. Shooks, geoIP screwing up would have been the easiest solution...
The tp link router is that your own, or is that from your ISP?

it mine not from the ISP...isp gave us GPON router i think from nokia.

and im using sharing internet main modem is like 80 meters away from my home and connected with my openwrt router through rj45 cat6

chill, it will come back, just settle with 1.1.1.1 and 1.0.0.1
Riyadh, Saudi Arabia - (RUH)Partially Re-routed

what does it mean? do i have to try something?

Still this is rather odd... 1.1.1.1 is anycasted, so you should be getting the same independent of the router... I guess you could try to take packet captures from both the tp-link and the openwrt router to see what is different between the two... it might be something silly like one using IPv4 while the other uses IPv6 for DNS...

ahh not willing to going too deep into this i will stay with 1.1.1.1 even if it is giving me
Marseille, france.

It will re-roite locally , check cf status every now and then

ohh okay... btw is it really neccessary to use secondary dns server 1.0.0.1?

if i only configured 1.1.1.1 will there be any affect on Quality?