RMerlin
Asuswrt-Merlin dev
Make sure you don't have anything clearing the content of your jffs partition (left over in a forgotten user script for example). I can't think of any reason for the directory to get erased at every reboot.
Adding Unblock-Us DNS using DNSMasq
- Thread starter xaviercharles
- Start date
Make sure you don't have anything clearing the content of your jffs partition (left over in a forgotten user script for example). I can't think of any reason for the directory to get erased at every reboot.
Ka Hooli
Occasional Visitor
Automated script/applet for Tunlr and other DNS services?
Sorry to bring up an old topic.
I'm thinking that a script run at regular intervals, that updates the dnsmasq.conf.add file if required (as per Tunlr API and a text file with set domains) may be the best way to add entries for use with Tunlr.
I haven't done any Python scripting for many years, but willing to brush up on my skills for this project. I'm up for the challenge, as I see this as a great feature for those who'd like it.
First for some background info on research done
I'm thinking that the script would see if the DNS IP's or the domains.txt have any changes, and only then recreating the dnsmasq.conf.add file.
I'm hoping that if this project if feasible, and works well, then it may be adapted for use with other similar DNS providers.
Sorry to bring up an old topic.
I'm thinking that a script run at regular intervals, that updates the dnsmasq.conf.add file if required (as per Tunlr API and a text file with set domains) may be the best way to add entries for use with Tunlr.
I haven't done any Python scripting for many years, but willing to brush up on my skills for this project. I'm up for the challenge, as I see this as a great feature for those who'd like it.
First for some background info on research done
- Additional DNSMasq entries can be added via /jffs/configs/dnsmasq.conf.add
- Tunlr presents its current DNS IP's via this API link.
- There is a Python script here for creating dnsmasq entries available here, which I may base my own script off, and therefor give credit to of course.
- Files that are written to frequently are recommended to be stored off the internal flash memory.
- Does Asuswrt-Merlin support Python scripts?
- If so, would the Python script be able to access the internet (if router is online of course) to be able to query the Tunlr API?
- Is it possible, and therefore advisable, to store the /jffs/configs directory on a USB flash drive? (I've tried to search for this, but nothing 100% conclusive)
- If all this isn't possible, would it be possible as an Entware/Optware package?
- Just thought of this... This may just be too difficult, but how hard would an applet similar to Astrill VPN be to create? This appears to be the ideal setup as it is user friendly to add and configure.
I'm thinking that the script would see if the DNS IP's or the domains.txt have any changes, and only then recreating the dnsmasq.conf.add file.
I'm hoping that if this project if feasible, and works well, then it may be adapted for use with other similar DNS providers.
Ka Hooli
Occasional Visitor
Thanks, I'll have a look at it over the next day or so
Update
Just checked out the code at your link, and see you were able to get the existing Python script working with some modification and using the Python Entware package. This answers my 1st question.
I think I'll look at the following over the next day...
- The update.sh script only seems to update the domains and DNS IP's from pre-set valules. I'll play with it a bit and see if I can answer my 2nd question, in effort to make the script more automated.
- Also, I didn't realise that you could refer to a different file within the dnsmasq.conf.add file, that is awesome! I wonder if we can refer it to a file stored on USB, so to prevent excessive writes to the internal memory? (My 3rd question)
Last edited:
The answer to #2 is: Yes, python script is able to access the internet, it updates Tunlr DNS servers via API that way. But there is no API to get the list of domains. That's why domains.txt is a static list, provided with code.
- There is no sense to update Tunlr's DNS too often. I think, once per week is optimal.
- We can't place part of dnsmasq.conf on external drive because USB becomes ready later then dnsmasq starts.
- We can't guess what comes first: internet connection or dnsmasq initialization, so /jffs/configs/dnsmasq_tunlr.conf must be always ready.
PS IMHO, we can avoid using Python, I think I can rewrite script to use /bin/sh only. If so, neither USB drive, nor Entware will be need.
Ka Hooli
Occasional Visitor
From what I could see in the code, it didn't obtain the DNS IP's via the API. Within makemasq.py file...
Code:
BYPASS_NAMESERVERS = ('69.197.169.9', '192.95.16.109')Also, from what I can tell on the Tunlr forums, there is no set list of domains as then it would make it easier for the geofencing teams to update their services to stop people using smartDNS's. To work around this, I've created a list here (RAW format).
Sounds good. I was thinking of something like this to minimise writes...
IF [online domain list] <> [local domain list] OR [Tunlr DNS IP's via API] <> [Stored Tunlr DNS IP's] THEN perform update.
Another great idea. I'll finish with the changes I'm working on, and that will be the next step to look into.
I've made a How-To using Tunlr on asuswrt-merlin.
Simplified as possible. No more USB drives and\or external repos required.
Simplified as possible. No more USB drives and\or external repos required.
Last edited:
ozgurcnbyz
Regular Contributor
Great list but dont understand why do we have to add unblock-us domain swell
found this https://mediahint.com/ ....for those who cannot get the script to work
works on FF and Chrome
btw some sites listed in the dnsmasq.conf.add are not working...like cwtv.com and ctv.ca any ideas on that ? i used ryzhov_al's script
works on FF and Chrome
btw some sites listed in the dnsmasq.conf.add are not working...like cwtv.com and ctv.ca any ideas on that ? i used ryzhov_al's script
Last edited:
Kummerpaule
New Around Here
Hey, I followed your how-to (thanks first of all!!) and added your Tunlr script to the jffs scripts but somehow my Asus AC66U is still not using the Tunlr DNS. I was wondering if I have to change settings in the GUI of the router?
I have an Easybox modem/router combo (wireless off) which connects lan->wan to my Asus router (wireless on). I want to use my ISP DNS server for normal web browsing but need the Tunlr DNS server for watching Netflix on my Roku. Do I have to enable DNSmasq first or did I overlook sth in my setup that stops the script from working?
Thanks for your help!
I have an Easybox modem/router combo (wireless off) which connects lan->wan to my Asus router (wireless on). I want to use my ISP DNS server for normal web browsing but need the Tunlr DNS server for watching Netflix on my Roku. Do I have to enable DNSmasq first or did I overlook sth in my setup that stops the script from working?
Thanks for your help!
I had trouble with dnsmasq after updating firmware. I suggest to reset your asus and re-apply your setting and see what's happening.
On the other hand, I had trouble with unblock-us or other related service. I created my own "unblock-us" kind of service. Here my post: http://forums.smallnetbuilder.com/showthread.php?t=13797 You need a vpn connection for sending some trafic in the US and an old router to manage the VPN connection. I use purevpn service. At the end, it's cheaper than unblock-us.
Basicly, my script update dnsmasq to return specific IP for each domain I want. After, It create a static route to send traffic for those IP to the old router managing the VPN, so that trafic goes by your vpn connection. I have all needed domaine for netflix, pandora, Hulu, nhl if someone ask. Like unblock-us, only specified domaine will goes by vpn and at the end, CDN server will send you directly the content and not by the vpn. An other possiblility, if you want a device to always use the vpn as gateway, you can modify dnsmask.conf and specify the ip of your old router as the gateway for the MAC address of your device. DHCP will manage the rest . For exemple, Roku can't manage vpn, but using this strategy, it can!
On the other hand, I had trouble with unblock-us or other related service. I created my own "unblock-us" kind of service. Here my post: http://forums.smallnetbuilder.com/showthread.php?t=13797 You need a vpn connection for sending some trafic in the US and an old router to manage the VPN connection. I use purevpn service. At the end, it's cheaper than unblock-us.
Basicly, my script update dnsmasq to return specific IP for each domain I want. After, It create a static route to send traffic for those IP to the old router managing the VPN, so that trafic goes by your vpn connection. I have all needed domaine for netflix, pandora, Hulu, nhl if someone ask. Like unblock-us, only specified domaine will goes by vpn and at the end, CDN server will send you directly the content and not by the vpn. An other possiblility, if you want a device to always use the vpn as gateway, you can modify dnsmask.conf and specify the ip of your old router as the gateway for the MAC address of your device. DHCP will manage the rest
. For exemple, Roku can't manage vpn, but using this strategy, it can!What Jacobno is describing above is what I am attempting to do but I am having no luck getting it to work.
After completing steps 1-3 and saving the file I confirm that I have the content correct. Issuing cat /jffs/scripts/services-start displays the following:
#!/bin/sh
echo "server=/netflix.com/208.122.23.22" >> /tmp/etc/dnsmasq.conf
echo "server=/netflix.com/208.122.23.23" >> /tmp/etc/dnsmasq.conf
killall dnsmasq
dnsmasq -c 1500 --log-async -n
I then do steps 4 and 5 describe above but I am sure nothing is happening. When I cat /tmp/etc/dnsmasq.conf none of the above data is present in the file. I know it isnt working because when I connect to netflix it is still the Canadian site.
I have magaed to get it working for just my roku by
echo "dhcp-host=<roku-mac>,set:red" > /jffs/configs/dnsmasq.conf.add
echo "dhcp-option=net:red,option:dns-server, 208.122.23.22, 208.122.23.23" >> /jffs/configs/dnsmasq.conf.add
But I need this to work for anyone/thing connected to the router that want to access netflix
Some please point me in the right direction
Last edited:
Update:
Omg why do I always make things so difficult for myself. All that was needed was:
echo "server=/netflix.com/208.122.23.22" >> /jffs/configs/dnsmasq.conf.add
echo "server=/netflix.com/208.122.23.23" >> /jffs/configs/dnsmasq.conf.add
reboot
and it works like a charm
Omg why do I always make things so difficult for myself. All that was needed was:
echo "server=/netflix.com/208.122.23.22" >> /jffs/configs/dnsmasq.conf.add
echo "server=/netflix.com/208.122.23.23" >> /jffs/configs/dnsmasq.conf.add
reboot
and it works like a charm
Last edited:
Kummerpaule
New Around Here
I had trouble with dnsmasq after updating firmware. I suggest to reset your asus and re-apply your setting and see what's happening.
On the other hand, I had trouble with unblock-us or other related service. I created my own "unblock-us" kind of service. Here my post: http://forums.smallnetbuilder.com/showthread.php?t=13797 You need a vpn connection for sending some trafic in the US and an old router to manage the VPN connection. I use purevpn service. At the end, it's cheaper than unblock-us.
Basicly, my script update dnsmasq to return specific IP for each domain I want. After, It create a static route to send traffic for those IP to the old router managing the VPN, so that trafic goes by your vpn connection. I have all needed domaine for netflix, pandora, Hulu, nhl if someone ask. Like unblock-us, only specified domaine will goes by vpn and at the end, CDN server will send you directly the content and not by the vpn. An other possiblility, if you want a device to always use the vpn as gateway, you can modify dnsmask.conf and specify the ip of your old router as the gateway for the MAC address of your device. DHCP will manage the rest
i am still trying to figure out how to get ryzhov_al script to work. my asus is connected wan to lan with a seperate modem. i am not sure what settings in the asus gui i have to put in the categories wireless, lan and wan? right now it is set to automatic ip under wan connection type and wan dns settings is set to automatically connect to dns server. in lan settings the dhcp server is enabled. still it is not using tunlr when i go to netflix.com.
any ideas?
I am using VPN service https://www.iwasel.com/en/ to unblock blocked websites freely and anonymously. It's secure and easy to install.
lostindark
Regular Contributor
To my talented friends. Can anyone confirm they have this working for mlb.tv and a roku? I have the following in my dnsmasq.conf.add file but still no dice.
server=/mlb.tv/208.122.23.23
server=/mlb.mlb.com/208.122.23.23
server=/unblock-us/208.122.23.23
Also have the .22 address in there. Can anyone tell me how to figure out what other servers the roku app might be connecting to so I can redirect them in dnsmasq? Thanks
server=/mlb.tv/208.122.23.23
server=/mlb.mlb.com/208.122.23.23
server=/unblock-us/208.122.23.23
Also have the .22 address in there. Can anyone tell me how to figure out what other servers the roku app might be connecting to so I can redirect them in dnsmasq? Thanks
Tunlr service has closed down. Please, ignore any FAQ about, no use for it.
Seems right to me except I don't understand why you have
server=/unblock-us/208.122.23.23
Not needed as far as I know. I use "unblock-us" as well but for netflix and amazon. All I have for those is
server=/netflix.com/208.122.23.22
server=/netflix.com/208.122.23.23
server=/netflix.net/208.122.23.22
server=/netflix.net/208.122.23.23
server=/amazon.com/208.122.23.22
server=/amazon.com/208.122.23.23"
Well I just did what the others above us did. If you look back on those long lists that users created they include unblock-us.com. Could this possibly be causing the problem?
Similar threads
Similar threads
Similar threads
-
IPv6 and Router Advertisement adding route to delegated /56 via WAN interface
- Started by MrC99
- Replies: 0
-
-
Any Risk In Adding Second IP Address To br0 Interface?
- Started by HarryMuscle
- Replies: 3
-
-
VPN configuration killswitch and adding additional safety
- Started by warp9lecy
- Replies: 1
-
-
-
-
-
Latest threads
-
-
-
So much for VPNs - Except when used for Android devices
- Started by L&LD
- Replies: 3
-
Cant host Friday the 13th game lobby
- Started by Johnnyproduce
- Replies: 5
-
Sign Up For SNBForums Daily Digest
Get an update of what's new every day delivered to your mailbox. Sign up here!