below is my original single dnsmasq instance before I converted to multiple and everything works but no adblock on the Kids_lan:
of note the kids lan is totally wireless in form with a bridged interface made up of two wireless devices with a dhcp range of 192.168.2.100-150.
The adult lan is made up of two seperate wireless networks briged to an eithernet port with a range of 192.168.1.100-150.
I thaught the google DNS was used as wan dns service if it is not on the block list should i leave this blank or set it to 192.168.1.1 and 192.168.2.1 ?
Yes I fixed this now as I named the interface LAN on the network and lan in the wireless config,must remember to rename all instances in all config files.
one omission is I forgot to do this in the firewall config and the reason for the wan side not working thanks for pointing this out.
This is the fault I'm getting in my log and the dns is not working unless I force it to 8.8.8.8 in the interface setting and im unsure why:
Tue Dec 22 19:23:26 2020 daemon.info dnsmasq-dhcp[4234]: read /etc/ethers - 0 addresses
Tue Dec 22 19:24:03 2020 daemon.err procd: unable to find /sbin/ujail: No such file or directory (-1)
Tue Dec 22 19:24:14 2020 daemon.info dnsmasq[4234]: exiting on receipt of SIGTERM
Tue Dec 22 19:24:14 2020 user.notice dnsmasq: DNS rebinding protection is active, will discard upstream RFC1918 responses!
Tue Dec 22 19:24:14 2020 user.notice dnsmasq: Allowing 127.0.0.0/8 responses
Tue Dec 22 19:24:15 2020 daemon.err procd: unable to find /sbin/ujail: No such file or directory (-1)
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: started, version 2.80 cachesize 150
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: DNS service limited to local subnets
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP no-DHCPv6 no-Lua TFTP no-conntrack no-ipset no-auth no-DNSSEC no-ID loop-detect inotify dumpfile
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq-dhcp[4758]: DHCP, IP range 192.168.2.100 -- 192.168.2.249, lease time 12h
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq-dhcp[4758]: DHCP, IP range 192.168.1.100 -- 192.168.1.249, lease time 12h
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain test
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain onion
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain localhost
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain local
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain invalid
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain bind
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain Adults_Lan
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: reading /tmp/resolv.conf.auto
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain test
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain onion
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain localhost
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain local
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain invalid
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain bind
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using local addresses only for domain Adults_Lan
Tue Dec 22 19:24:15 2020 daemon.warn dnsmasq[4758]: ignoring nameserver 192.168.1.1 - local interface
Tue Dec 22 19:24:15 2020 daemon.warn dnsmasq[4758]: ignoring nameserver 192.168.1.1 - local interface
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: using nameserver 192.168.1.254#53
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq[4758]: read /etc/hosts - 4 addresses
Tue Dec 22 19:24:15 2020 daemon.err dnsmasq[4758]: failed to load names from /tmp/hosts/dhcp.cfg01411c: Permission denied
Tue Dec 22 19:24:15 2020 daemon.err dnsmasq[4758]: failed to load names from /tmp/adb_list.overall: No such file or directory
Tue Dec 22 19:24:15 2020 daemon.info dnsmasq-dhcp[4758]: read /etc/ethers - 0 addresses
and this is the contents of the dhcp.cfg01411c
# auto-generated config file from /etc/config/dhcp
192.168.1.1 OpenWrt
192.168.2.1 OpenWrt
With multiple dnsmac instances the router has access to the internet with opkg and adblock but none of the interfaces will work I get dns activly denied from any downstream device, if i remove the multiple instance it works as normal so i guess there is some sort of bug or firewall issue ?
I can ping from my pc to 8.8.8.8 but traceroute fails on any dns lookup
output on Tracert on my PC
Tracing route to 8.8.8.8 over a maximum of 30 hops
1 2 ms 1 ms 1 ms OpenWrt.Adults_Lan [192.168.1.1]
2 <1 ms <1 ms <1 ms 192.168.1.254
3 38 ms 40 ms 39 ms 10.207.224.169
4 * * 64 ms 122.56.113.7
5 55 ms 45 ms 62 ms 122.56.113.4
6 58 ms 58 ms 75 ms 122.56.119.53
7 79 ms 95 ms 70 ms 202.50.232.110
8 67 ms 88 ms 72 ms 202.50.232.246
9 73 ms 79 ms 82 ms 72.14.217.100
10 64 ms 81 ms 85 ms 108.170.247.65
11 84 ms 81 ms 81 ms 142.250.224.221
12 80 ms 84 ms 77 ms 8.8.8.8
I can run Ping Traceroute and nslookup from the openwrt diagnostics page which work properly.
for INST in lan guest
do
uci set dhcp.${INST}_dns.leasefile="/tmp/dhcp.leases.${INST}"
uci set dhcp.${INST}_dns.resolvfile="/etc/resolv.conf.${INST}"
............. etc...
That option is an example of using different upstream resolvers for different dnsmasq instances.
The custom resolver configs should be created by the user.
You don't need it when both instances rely on the same resolvers.