OpenWrt SNAPSHOT, r6806-fd569e5
dnsmasq-full - 2.79-3
Experimenting with my own build of OpenWrt/LEDE on x86 computer. Trying to create this configuration https://openwrt.org/docs/guide-user/base-system/dhcp#multiple_dhcpdns_serverforwarder_instances
Required patch seem to be already included a long time ago in LEDE.
dhcp configuration
config dnsmasq 'main'
option domainneeded '1'
option boguspriv '1'
option filterwin2k '0'
option localise_queries '1'
option rebind_protection '1'
option rebind_localhost '1'
option local '/lan/'
option domain 'lan'
option expandhosts '1'
option nonegcache '0'
option authoritative '1'
option readethers '1'
option leasefile '/tmp/dhcp.leases'
option resolvfile '/tmp/resolv.conf.auto'
option nonwildcard '1'
option localservice '1'
option strictorder '1'
option sequential_ip '1'
config dhcp 'lan'
option interface 'lan'
option leasetime '30m'
option ra 'disabled'
option dhcpv6 'disabled'
list dhcp_option '6,192.168.1.1'
option start '100'
option limit '100'
option dnsmasq_config 'main'
config dhcp 'wan'
option interface 'wan'
option ignore '1'
option dnsmasq_config 'main'
config host
option name 'beam-me-up'
option dns '1'
option displayName 'beam-me-up'
option mac '38:d5:47:94:2e:5e'
option ip '192.168.1.99'
option dnsmasq_config 'main'
config dnsmasq 'opennic'
option nonwildcard '1'
option strictorder '1'
option resolvfile '/root/resolv.conf.ns0'
config dnsmasq 'cloudflare'
option nonwildcard '1'
option strictorder '1'
option resolvfile '/root/resolv.conf.ns1'
config dnsmasq 'quad9'
option nonwildcard '1'
option strictorder '1'
option resolvfile '/root/resolv.conf.ns2'
root@tinwoodman:~# cat /root/resolv.conf.ns0
nameserver 217.12.210.54
root@tinwoodman:~# cat /root/resolv.conf.ns1
nameserver 1.1.1.1
root@tinwoodman:~# cat /root/resolv.conf.ns2
nameserver 9.9.9.9
root@tinwoodman:~# cat /tmp/resolv.conf.auto
# Interface wan
nameserver 10.12.1.10
nameserver 10.12.1.15
DNS server ping test
15:54[1]root@beam-me-up:~>ping -c1 217.12.210.54
PING 217.12.210.54 (217.12.210.54) 56(84) bytes of data.
64 bytes from 217.12.210.54: icmp_seq=1 ttl=59 time=10.4 ms
16:05[1]root@beam-me-up:~>ping -c1 1.1.1.1
PING 1.1.1.1 (1.1.1.1) 56(84) bytes of data.
64 bytes from 1.1.1.1: icmp_seq=1 ttl=60 time=1.40 ms
Yeah, 9.9.9.9 answer quite fast too
16:05[1]root@beam-me-up:~>ping -c1 9.9.9.9
PING 9.9.9.9 (9.9.9.9) 56(84) bytes of data.
64 bytes from 9.9.9.9: icmp_seq=1 ttl=60 time=2.02 ms
16:05[1]root@beam-me-up:~>ping -c1 10.12.1.10
PING 10.12.1.10 (10.12.1.10) 56(84) bytes of data.
64 bytes from 10.12.1.10: icmp_seq=1 ttl=128 time=73.5 ms
And I'm always getting Cloudflare server IP in checks
16:06[1]root@beam-me-up:~>ping -c1 whoami.fluffcomputing.com
PING whoami.fluffcomputing.com (172.68.237.53) 56(84) bytes of data.
64 bytes from 172.68.237.53 (172.68.237.53): icmp_seq=1 ttl=60 time=1.34 ms
16:08[1]root@beam-me-up:~>ping -c1 whoami.akamai.net
PING whoami.akamai.net (162.158.248.233) 56(84) bytes of data.
64 bytes from 162.158.248.233 (162.158.248.233): icmp_seq=1 ttl=60 time=1.37 ms
Or https://dnsleaktest.com. Doesn't matter.
Also there is no traffic to other dns servers at all. Checked with:
tcpdump -ni eth0 udp port 53 and host not 1.1.1.1
I did the same experiments on 17.01.4 and it worked as intended.
Repeated experiments on 17.01.4 and looks like it doesn't work there too.
So I'm curious is it bug or feature?