Resolve wan hostnames

tweetyericsson · September 17, 2023, 11:21am

Hello I'll try to be succinct.

I have two OpenWrt devices, one is set up as AP and the other is the client which connects to the AP.

AP - 192.168.1.1 | james.lan
client - 192.168.1.111(wan dhcp) | 192.168.2.1 (lan static) | joe.wrt (lan domain)

The client's wan zone forward option is set to ACCEPT so it can access the 192.168.1.0 subnet.

What works:
james> ping 192.168.1.111
james> ping joe.lan
joe> ping 192.168.1.1

What doesn't work:
joe> ping james.lan (bad address)

So what I'm asking is how to get joe to access james and its other clients by their hostnames.

Thank you

hnyman · September 17, 2023, 11:40am

As you have local private IP Addresses also on the wan side, the DNS server in Joe discards the DNS response from James by default (as wan should normally have public IPs)

See dnsmasq options. You might need to set rebind protection to 0, or define domains to allow rfc1918 responses (private IP addresses)

https://openwrt.org/docs/guide-user/base-system/dhcp

rebind_protection boolean 1 --stop-dns-rebind
Enables DNS rebind attack protection by discarding upstream RFC1918 responses

rebind_domain list of domain names (none) --rebind-domain-ok
List of domains to allow RFC1918 responses for, only takes effect if rebind protection is enabled. The correct syntax is: list rebind_domain '/example.com/'

tweetyericsson · September 17, 2023, 12:26pm

Hi

Adding this in config dnsmasq

list rebind_domain 'lan'

allows joe to successfully ping james.lan and any of james' clients.

Thank you

system · September 27, 2023, 12:28pm

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.