DD-WRT serving additional DNS servers instead of just the router’s IP

dd-wrtdhcpdnsdnsmasqrouter

I have a DD-WRT (using DD-WRT v24SP2-MULTI (03/21/11) std) router set up with DNSMasq to resolve certain domains to internal addresses and pass everything else thru. The router itself is configured to use Google’s public DNS servers to resolve addresses.

My setup screen looks like this:

DDWRT Setup Screen

My problem is that when a DHCP client connects, they get the router plus Google’s two DNS servers as the assigned DNS servers:

DNS servers assigned by DHCP

This is a problem because sometimes wireless clients try to resolve a domain that is supposed to point to an internal IP address and end up getting an external ip instead because for whatever reason their request is sent to 8.8.8.8 instead of to the router.

I don’t want the router to serve anything but its own IP as the DNS server. Is that possible?

Best Answer

It's good that you're using DNSMasq.

You can configure what you want in the Services (> Services) tab, in the DNSMasq > Additional DNSMasq Options box, but first, you'll want to clear those Static DNS fields. Static DNS fields in "Setup > Basic Setup"

Add the following to the DNSMasq options box:

dhcp-option= option:dns-server, 192.168.10.10 # DHCP option 006

server = 8.8.8.8 # DNSMasq will use these servers for forwarding the DNS requests that it can't serve
server = 8.8.4.4

Solution:

So, the solution is to get dd-wrt to create the entries in /etc/hosts without the domain on them, and then tell dnsmasq to consider those host entries as part of the example.com domain when a fully qualified A record DNS query comes in.
To do this you have to:

Put the example.com domain in the Domain Name field on the Setup -> Basic Setup page under Optional Settings.
Blank the LAN Domain setting on the Services page under DHCP Server.
Add expand-hosts to Additional DNSMasq Options on the Services page under DNSMasq

Step #1 controls the domain= setting that gets put in the dnsmasq.conf file. Step #2 removes the domain from the entries that get put in /etc/hosts. Step #3 tacks the domain onto the entries in /etc/hosts when a fully qualified DNS query comes in.

I'm so glad dd-wrt made this nice and simple...

DD-WRT DNS lookup failure

First thing: try pinging an IP address, such as 8.8.8.8. You said you're getting an unknown host message; that means you pinged a domain name and the DNS lookup failed, but that doesn't tell us anything new.

Does it not work (likely no response)? Well, it seems your new router isn't connecting to the Internet.

One cause of a router silently failing to connect to the ISP that I've encountered is if you forgot to clone the MAC address of the previous device you used to connect to it. See my answer here for more details.

If that isn't the cause, it doesn't seem like there's anything wrong on your end, so you should contact your ISP's support and tell them you can't ping.

Best Answer

Related Solutions

DD-WRT: DNSMasq expand-hosts not working

Solution:

DD-WRT DNS lookup failure

Related Question