Hi, i tried to force all clients on LAN to use my local DNS server (even if the explicitly use different one). I tried 2 ways - an openwrt guide for luci with help of zones & port forwards, and also second way of custom iptables rules Redirect All Outbound DNS Traffic to Internal IP . Im partially …

iptables -t nat -A postrouting_lan_rule -d 192.168.178.11 -p tcp -m tcp --dport 53 -m comment --comment "!fw3: DNS MASQ DNS QUERIES" -j MASQUERADE iptables -t nat -A postrouting_lan_rule -d 192.168.178.11 -p udp -m udp --dport 53 -m comment --comment "!fw3: DNS MASQ DNS QUERIES" -j MASQUERADE 192.1…

Hijacked DNS timeouts

Installing and Using OpenWrt Network and Wireless Configuration

trendy September 23, 2020, 10:16am 10

SNAT/Masquerade is only necessary when in the same zone, so the Pihole will not respond directly to the host and trigger the "reply from unexpected source".

1 Like