Menu
What's new
By:
Filters Better Search

Smartphone Identification Question

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

drinkingbird said:
Have you looked at this thread:

askubuntu.com

Ubuntu 22.04 LTS Desktop - DHCP DNS servers ignored

Relatively new to linux and just needed to run through something: I've noticed that with Ubuntu 22.04 there is no way to disable the dns stub listener at install time nor run time on the live cd wi...
askubuntu.com askubuntu.com
Click to expand...
Interesting question posed by OP.

I started searching on whether Ubuntu intentionally blocks local name resolution, and it turns out that recent versions of dnsmasq do it on purpose, to supposedly thwart some bizarre attack type, so I uninstalled dnsmasq and did a cleanup, rebooted but the problem persists (additional paranoia somewhere in the convoluted network setup). I'm going to try to revert back to the old ifupdown style of networking (which is what was in place when I started with linux) and see if that fixes it. If it doesn't I'll turn the DHCP server back on, disable router DHCP and the get the info I'm looking for from the DHCP log file that I use. Maybe reverting back to 16.04 might be worth trying, IDK.
 
djmcfar said:
Interesting question posed by OP.

I started searching on whether Ubuntu intentionally blocks local name resolution, and it turns out that recent versions of dnsmasq do it on purpose, to supposedly thwart some bizarre attack type, so I uninstalled dnsmasq and did a cleanup, rebooted but the problem persists (additional paranoia somewhere in the convoluted network setup). I'm going to try to revert back to the old ifupdown style of networking (which is what was in place when I started with linux) and see if that fixes it. If it doesn't I'll turn the DHCP server back on, disable router DHCP and the get the info I'm looking for from the DHCP log file that I use. Maybe reverting back to 16.04 might be worth trying, IDK.
Click to expand...

That post seemed to imply it was DHCP learned DNS servers that were being ignored, have you tried statically setting the DNS server on the Ubuntu box to your router IP?
 
drinkingbird said:
That post seemed to imply it was DHCP learned DNS servers that were being ignored, have you tried statically setting the DNS server on the Ubuntu box to your router IP?
Click to expand...

No, I didn't try that. But it turns out that the root cause of the local DNS failures is beyond my control and has nothing to do with linux. I have VPN client enabled on the router and use the VPN Director rules to select VPN/WAN for the computers in the network. "Exclusive" mode was the only DNS setting that worked with all of the streaming services that we use, and unfortunately in exclusive mode there is no check for local DNS queries, so they get passed up-stream to the VPN's DNS servers who recognize it as a local network request and send the correct response, returning "localhost" as the authoritative nameserver and "not found" as the answer. If there was a check for local LAN queries, then the problem could be avoided. I'm going to start another question thread to RMerlin and see if he thinks that is possible for him to implement.

The thing that made me think of this as a possibility was nslookup failures from a new Windows 11 laptop that I never tried nslookup on until last night. The thing that me previously think is was a Linux issue, was I had servers running on the 3 windows boxes that I tried nslookup from (perforce and 2 web servers) and they were all set to use the WAN by VPN director rules, whereas the linux boxes were using the router's client VPN (along with the new windows laptop that failed nslookup).

I didn't think that this was possible, because sending a local src and dest DNS request upstream is guaranteed to fail. Now I feel stupid for blaming Linux (running and hiding) !! :rolleyes:

Thanks again for your help with this issue. :) Cheers !!
 
sfx2000 said:
recent guidance is that .home is being now used for matter/thread IoT...


.lan is becoming more popular these days for private in-house domain naming...

Of course, one could do home.lan, but one shouldn't do lan.home (see above)
Click to expand...

Yeah home.lan is my recommendation (for people who care, most average users don't know or care about LAN hostnames). Techically if you look at the spec there are only a few really dumb ones reserved for private use like .test and .debug.

Luckily I have my own domain and just use a subdomain of it for the LAN. If you specify nothing, I believe your ISP's domain will pass through, not sure if that is still the case though.

I'm just an old fart so having just hostname.lan looks wrong to me :)

Actually if you wanted to implement a crude parental control you could just use pornhub.com then nobody could ever get to that :D
 
djmcfar said:
No, I didn't try that. But it turns out that the root cause of the local DNS failures is beyond my control and has nothing to do with linux. I have VPN client enabled on the router and use the VPN Director rules to select VPN/WAN for the computers in the network. "Exclusive" mode was the only DNS setting that worked with all of the streaming services that we use, and unfortunately in exclusive mode there is no check for local DNS queries, so they get passed up-stream to the VPN's DNS servers who recognize it as a local network request and send the correct response, returning "localhost" as the authoritative nameserver and "not found" as the answer. If there was a check for local LAN queries, then the problem could be avoided. I'm going to start another question thread to RMerlin and see if he thinks that is possible for him to implement.

The thing that made me think of this as a possibility was nslookup failures from a new Windows 11 laptop that I never tried nslookup on until last night. The thing that me previously think is was a Linux issue, was I had servers running on the 3 windows boxes that I tried nslookup from (perforce and 2 web servers) and they were all set to use the WAN by VPN director rules, whereas the linux boxes were using the router's client VPN (along with the new windows laptop that failed nslookup).

I didn't think that this was possible, because sending a local src and dest DNS request upstream is guaranteed to fail. Now I feel stupid for blaming Linux (running and hiding) !! :rolleyes:

Thanks again for your help with this issue. :) Cheers !!
Click to expand...

If your linux box or raspberry pi etc is up all the time, could just move DNS and DHCP to there.
 
drinkingbird said:
I'm just an old fart so having just hostname.lan looks wrong to me :)
Click to expand...

I'm an equally old fahrt, and .lan as a tld for a local network is just fine...

I am the maintainer here for the reserved parametric FAQ - if you have inputs, happy to add them...

www.snbforums.com

FAQ - Reserved Characters/Names - SSID/Passwords/Hostnames/Domains

Maintaining/updating this list - I've tried to capture most of the characters/words/ranges to avoid - if there are more, please reply to this thread and I'll update the list... Changelist 08/9/22 - update for Thread IOT reserved HLD's (.home, .service) 08/11/19 - quick update about reserved...
www.snbforums.com www.snbforums.com
 
sfx2000 said:
I'm an equally old fahrt, and .lan as a tld for a local network is just fine...

I am the maintainer here for the reserved parametric FAQ - if you have inputs, happy to add them...

www.snbforums.com

FAQ - Reserved Characters/Names - SSID/Passwords/Hostnames/Domains

Maintaining/updating this list - I've tried to capture most of the characters/words/ranges to avoid - if there are more, please reply to this thread and I'll update the list... Changelist 08/9/22 - update for Thread IOT reserved HLD's (.home, .service) 08/11/19 - quick update about reserved...
www.snbforums.com www.snbforums.com
Click to expand...

Nah I just mean not having a domain along with the TLD. Of course it works perfectly fine and is perfectly valid I am just set in my ways.
 
sfx2000 said:
I'm an equally old fahrt, and .lan as a tld for a local network is just fine...

I am the maintainer here for the reserved parametric FAQ - if you have inputs, happy to add them...

www.snbforums.com

FAQ - Reserved Characters/Names - SSID/Passwords/Hostnames/Domains

Maintaining/updating this list - I've tried to capture most of the characters/words/ranges to avoid - if there are more, please reply to this thread and I'll update the list... Changelist 08/9/22 - update for Thread IOT reserved HLD's (.home, .service) 08/11/19 - quick update about reserved...
www.snbforums.com www.snbforums.com
Click to expand...

Heh looking at your list reminds me of my first network engineer job out of college long ago where they had thousands of hostnames in their internal DNS using underscore, it was actually a documented naming standard. It worked for the most part but several things did have issues with it. BIND surprisingly didn't care, nor did the IP management system they were using. But engineers peer review each others work and I'd always reject when I saw they had assigned a hostname with _ in it. I became the "underscore nazi".
 
drinkingbird said:
Heh looking at your list reminds me of my first network engineer job out of college <snip>
Click to expand...
the chronology sieve of old fahrt is the proper application of the number of obsoleted RFCs at the time you were first allowed to touch stuff and get paid for it -or if you prefer - naming conventions that didn't break sed or awk... you choose... mine goes back to pre-iana when postel hired me as an indentured janitor... it was close to the beach - so I didn't care...
 
You must log in or register to reply here.

Similar threads

U
Smartphone does not transit to better AiMesh node
Replies
4
Views
427
L&LD
L&LD
P
dnsmasq custom domain doesn't work on windows 10
Replies
1
Views
233
PickleTickle
P
icanfly
DNS fails for local devices when there is no WAN!
Replies
2
Views
484
icanfly
icanfly
jetpack42
Correctly using VPN Director?
Replies
2
Views
617
jetpack42
jetpack42
H
Spotify connect broadcast multicast across both wifi 2.4GHz and 5GHz
Replies
6
Views
1K
mbyr416
M
Similar threads
Thread starter Title Forum Replies Date
U Smartphone does not transit to better AiMesh node Asuswrt-Merlin 4
A Question about Asus Merlin Router behind a firewalla? Asuswrt-Merlin 8
D Solved Samba, LACP & WireGuard. Question. Asuswrt-Merlin 5
P Question on Wireguard tunnel configuration. Asuswrt-Merlin 9
D Solved ethtool question regarding at boot Asuswrt-Merlin 2
TheLyppardMan A question about WireGuard security Asuswrt-Merlin 25
A Question about network map Asuswrt-Merlin 2
X DNS Director - question Asuswrt-Merlin 6
Zakalwe WAN Aggregation Question Asuswrt-Merlin 18
F Question - Manual Firmware Update Asuswrt-Merlin 8

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 641 (members: 17, guests: 624)
Top