Hello,
i made a update from a older -d firmware to 1.9.2.7-rtn-r2972 today on my WL500W.
I got all my settings and programs working so far, but one thing is not working.
I have my dnsmasq setup to use another resolv file, and want local programs to query dnsmasq!
my /etc/resolv.conf is: "nameserver 127.0.0.1"
This is not working. If I put another server (e.g. 8.8.8.8) it works.
Other computers can access dnsmasq.
Here is my dnsmasq.conf:
Code:
user=nobody
interface=br0
domain=network.local
expand-hosts
no-negcache
dhcp-leasefile=/tmp/dnsmasq.log
dhcp-range=lan,192.168.1.2,192.168.1.100,36000
dhcp-option=lan,15,network.local
read-ethers
dhcp-authoritative
# Set the NTP time server addresses to 192.168.1.1
dhcp-option=option:ntp-server,192.168.1.1
resolv-file=/opt/etc/resolv.conf
cache-size=1800
#no resolv.conf, just one server
#no-resolv
#server=127.0.0.1#53053
# Send microsoft-specific option to tell windows to release the DHCP lease
# when it shuts down. Note the "i" flag, to tell dnsmasq to send the
# value as a four-byte integer - that's what microsoft wants. See
# http://technet2.microsoft.com/WindowsServer/en/library/a70f1bb7-d2d4-49f0-96d
dhcp-option=vendor:MSFT,2,1i
And here is the output of iptables -L
Code:
Chain INPUT (policy ACCEPT)
target prot opt source destination
DROP all -- anywhere anywhere ctstate INVALID
ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere ctstate NEW
ACCEPT all -- anywhere anywhere ctstate NEW
ACCEPT igmp -- anywhere BASE-ADDRESS.MCAST.NET/4
ACCEPT udp -- anywhere BASE-ADDRESS.MCAST.NET/4 udp dpt:!upnp
ACCEPT udp -- anywhere anywhere udp spt:bootps dpt:bootpc
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh flags:FIN,SYN,RST,ACK/SYN
ACCEPT icmp -- anywhere anywhere
ACCEPT udp -- anywhere anywhere udp dpts:33434:33534
ACCEPT tcp -- anywhere anywhere tcp dpt:https
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
ACCEPT udp -- anywhere anywhere udp dpt:ntp
ACCEPT tcp -- anywhere anywhere tcp dpt:www
DROP all -- anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
DROP all -- anywhere anywhere ctstate INVALID
ACCEPT udp -- anywhere BASE-ADDRESS.MCAST.NET/4
ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED
DROP all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere ctstate DNAT
ACCEPT all -- anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT udp -- localhost.localdomain anywhere udp spt:domain
Chain BRUTE (0 references)
target prot opt source destination
Chain MACS (0 references)
target prot opt source destination
Chain SECURITY (0 references)
target prot opt source destination
RETURN tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 1/sec burst 5
RETURN tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5
RETURN udp -- anywhere anywhere limit: avg 5/sec burst 5
RETURN icmp -- anywhere anywhere limit: avg 5/sec burst 5
DROP all -- anywhere anywhere
Chain logaccept (0 references)
target prot opt source destination
LOG all -- anywhere anywhere ctstate NEW LOG level warning tcp-sequence tcp-options ip-options macdecode prefix `ACCEPT '
ACCEPT all -- anywhere anywhere
Chain logdrop (0 references)
target prot opt source destination
LOG all -- anywhere anywhere ctstate NEW LOG level warning tcp-sequence tcp-options ip-options macdecode prefix `DROP '
DROP all -- anywhere anywhere
and ip6tables -L
Code:
Chain INPUT (policy ACCEPT)
target prot opt source destination
DROP all anywhere anywhere rt type:0
ACCEPT ipv6-icmp anywhere anywhere ipv6-icmp !echo-request
DROP all anywhere anywhere ctstate INVALID
ACCEPT all anywhere anywhere ctstate RELATED,ESTABLISHED
ACCEPT all anywhere anywhere ctstate NEW
ACCEPT all anywhere anywhere ctstate NEW
ACCEPT all ff00::/8 anywhere
ACCEPT tcp anywhere anywhere tcp dpt:ssh flags:FIN,SYN,RST,ACK/SYN
ACCEPT ipv6-icmp anywhere anywhere ipv6-icmp echo-request
ACCEPT udp anywhere anywhere udp dpts:33434:33534
DROP all anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
DROP all anywhere anywhere rt type:0
ACCEPT all anywhere anywhere
DROP all anywhere anywhere ctstate INVALID
ACCEPT all ff00::/8 anywhere
ACCEPT all anywhere anywhere ctstate RELATED,ESTABLISHED
ACCEPT ipv6-icmp anywhere anywhere
DROP all anywhere anywhere
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
DROP all anywhere anywhere rt type:0
Chain SECURITY (0 references)
target prot opt source destination
Chain logaccept (0 references)
target prot opt source destination
LOG all anywhere anywhere ctstate NEW LOG level warning tcp-sequence tcp-options ip-options macdecode prefix `ACCEPT '
ACCEPT all anywhere anywhere
Chain logdrop (0 references)
target prot opt source destination
LOG all anywhere anywhere ctstate NEW LOG level warning tcp-sequence tcp-options ip-options macdecode prefix `DROP '
DROP all anywhere anywhere
Why is 127.0.0.1 not working as nameserver?
As I said, other computerc use 192.168.1.1 (local network ip of the router) just fine.