Test to know if DoH or DoT is working:
- Cloudflare Test
(Does not work if you have DNSSEC validation enabled)
uci add dhcp host
uci set dhcp.@host[-1].name="mydesktop"
uci set dhcp.@host[-1].ip="192.168.1.22"
uci set dhcp.@host[-1].mac="00:11:22:33:44:55"
uci commit dhcp
/etc/init.d/odhcpd restart
⠀
More information:
- dnsmasq is very slow due to ad-blocking
- Adblock slow dns queries. Is that worth at that level?
- Faster DNS server than dnsmasq running on Openwrt?
- Network slow down with adblock. Should I use dnsmasq with addn-hosts? If so, how?
⠀
I also tried this recommendation in Adblock and I still have network slowdown problems (excluding Unbound) with any of the 3 packages used above to encrypt DNS traffic.
The address directive of
dnsmasqis horribly inefficient. > The best option isaddn-hosts:Additional hosts file. Read the specified file as well as /etc/hosts. If --no-hosts is given, read only the specified file. This option may be repeated for more than one additional hosts file. If a directory is given, then read all the files contained in that directory.
Pi-hole uses a slightly modified fork of
dnsmasqas its backend, and can easily handle 3m domains on RPi-like hardware using this method.⠀
iio7:
I am running dnsmasq on a quad core Intel Celeron 2GHz CPU with 2 GB of memory.
UPDATE: I tried converting the list to Unbound and run with that. Unbound timed out loading the list. I then decreased the list to about 250.000 entries, then Unbound started, but answered the above query in 3376 msec. So that's a LOT slower than dnsmasq. Perhaps expecting better response times with dnsmasq is too much with such a big list?
UPDATE: With the
addn-hostsdirective suggested by @WaLLy3K Dnsmasq now blows through the roof! Amazing!