Hi,
I have successfully setup a restricted subnet iot.
This means OpenWrt router rejects egress and ingress on this interface, but specific traffic rules allow DNS, DHCP and NTP.
One of my DHCP clients is a Sony Bravia SmartTV, and this device starts flipping status connected/disconnected.
I can observe on this TV that it fails to identify an internet connection.
And this could be related to my restricted DNS setup, means there's a Pihole server in my network that replies to all DNS requests.
Other clients, e.g. Android smartphone, works w/o issues connected to the same subnet iot.
Could you please advise how to trouble-shoot this issue?
Look, the issue is a little more complext.
If I disable DHCP on OpenWrt router's iot interface and enable DHCP on another server, this device works w/o problems.
My conclusion is that Pihole is not the root cause.
Please spend some time with tcpdump. Pointing fingers at everybody will not convince them to help you. Openwrt as mitm is a goodplace to start, probably pihole next.
Please connect to your OpenWrt device using ssh and copy the output of the following commands and post it here using the "Preformatted text </> " button:
Remember to redact passwords, MAC addresses and any public IP addresses you may have:
If you're blocking all output on a zone you need to add an exception for UDP 68 to allow DHCP (v4) renewals. It is safe to allow output by default on a guest/iot network since that would only be connections initiated by the router not the untrusted devices.
After modifying DHCP settings this device works as exptected.
Originally I had a DHCP IP range 192.168.1.100-249, and the device received IP 192.168.1.205.
Now this IP range is 192.168.1.100-199.
Maybe this information helps other users with a similar issue.