RocketJSquirrel
Senior Member
Since updating to 384.11, I've been seeing lots of DNS errors. I have enabled DNS-over-TLS, but don't really understand optimal setup. What happens with the other DNS server fields in the web GUI? Are they ignored? Not knowing what else to do with them, I've set them the same as my DoT servers. I'm using Cloudflare and Google for both IPv4 and v6.
Anyway, here are a few of the log errors; just a sample, there are dozens. Can anyone clue me in to what I have misconfigured?
May 20 13:46:15 dnsmasq[208]: Insecure DS reply received for d3a13n3.rootcanary.net, could be bad domain configuration or lack of DNSSEC support from upstream DNS servers
May 20 16:45:23 dnsmasq[208]: Insecure DS reply received for 168.192.in-addr.arpa, could be bad domain configuration or lack of DNSSEC support from upstream DNS servers
May 20 17:35:41 dnsmasq[208]: Insecure DS reply received for 10.in-addr.arpa, could be bad domain configuration or lack of DNSSEC support from upstream DNS servers
Anyway, here are a few of the log errors; just a sample, there are dozens. Can anyone clue me in to what I have misconfigured?
May 20 13:46:15 dnsmasq[208]: Insecure DS reply received for d3a13n3.rootcanary.net, could be bad domain configuration or lack of DNSSEC support from upstream DNS servers
May 20 16:45:23 dnsmasq[208]: Insecure DS reply received for 168.192.in-addr.arpa, could be bad domain configuration or lack of DNSSEC support from upstream DNS servers
May 20 17:35:41 dnsmasq[208]: Insecure DS reply received for 10.in-addr.arpa, could be bad domain configuration or lack of DNSSEC support from upstream DNS servers