MWan3 IPSET Rules for specific domains failing - With Hack Fix

Anyone else having a problem with IPSet and mwan3? After configuring everything. There is an issue where none of my ipsets work. If I check them with 'ipset -L' they are still not listed after rebooting.

I did find a workaround by creating the ipset manually via the command line and then dnsmasq is updating them correctly. Is this a registered known bug or am I doing something wrong? I had this working in openwrt 15.01, without the hack.

For example, creating the IPs manually allows dnsmasq to use it
ipset -N whatsmyip iphash


mwan config rule
config rule 'whatsmyip'
** option proto 'all'**
** option sticky '0'**
** option ipset 'whatsmyip'**
** option use_policy 'wan_only'**

1 Like

AFAIK the actual config file location for dnsmasq (not the uci-ed settings) has changed in 17.x over 15.x and that could be the reason.

The neater solution would be to add the ipset to the /etc/config/dhcp file.

I did add the following during testing:

list ipset '/' in my /etc/config/dhcp but it didn't have an effect. When I did a ipset -L - it never showed up.

same issue here on archer c7 v4 on lede snapshot. had to do your hack so it would work. any known automatic workarounds or fix at this point in time?

Ipsets should be added to firewall, not dhcp.

Same issue on lastest snapshot. You need add this at local startup, correct command is:
ipset -N whatsmyip hash:ip