Menu
What's new
By:
Filters Better Search

Advisory - special case TLD's and zeroconf

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

sfx2000

sfx2000

Part of the Furniture
Not sure where else to put this, but this seems as good place as any based on active 3rd party developers and script writers...

As part of a project, we ran into an odd problem with one of our testers - one of our tasks does mDNS for service and node discovery within the local subnets - and his site was acting beyond bizarre - come to find that his particular network was resolving anything with .local as unicast DNS...

So his private DNS server (dnsmasq) was resolving .local, and not returning correct info... we got him to change over to .lan, resolving his particular problem.

.test, .local, .onion, and a few others (I've posted a comprehensive list over in the general wireless forum..)

Remember that 240.0.0.0/4 along with the 169.254.0.1 thru 169.254.255.254 ranges should be handled with care... esp. the multicast range as there are meshes that might use this for internal messaging across nodes...
 
Last edited:
In AB-Solution, I completely remove local, localhost and localhost.localdomain for this reason. I did have some weird behavior at on time. Removing these in the downloaded hosts files solved it immediately.
 
Hmm... hokay, this is perhaps relevant to Asus and other vendors...

AsusWRT does allow in their WebGUI to put a .local in the config (perhaps also .test, .onion, etc) - which isn't a good thing...

See below... (kids, don't try this at home) - not sure how to fix this upfront in an area of the WebUI that only the brave dare to tread...

@RMerlin has hinted in the past, that .local is not a good thing to use - and I concur - putting .local in particular can break Airplay and Airprint for Apple devices (and other devices that may depend on mDNS service discovery and name resolution).

I would go as far as being very careful about the normal TLD's - since stuff like .COM, .NET, etc in some contexts (like VPN or TOR) could result in some level of leakage...

Screen Shot 2016-12-17 at 2.31.35 PM.png
 
Seems like a relatively common issue. My pfSense box has this warning: "Do not use 'local' as a domain name. It will cause local hosts running mDNS (avahi, bonjour, etc.) to be unable to resolve local hosts not running mDNS."

The warning is true. I used local at one point and things did not go well.
 
Just added a patch for my fork....
webui: prevent use of registered domain names for router domain
 
You must log in or register to reply here.

Similar threads

sfx2000
  • Sticky
FAQ - Reserved Characters/Names - SSID/Passwords/Hostnames/Domains
Replies
7
Views
22K
sfx2000
sfx2000
A
Multicast/Bonjour/ZeroConf/mdns packets blocked?
Replies
0
Views
5K
Ayla
A
Similar threads
Thread starter Title Forum Replies Date
M OpenVPN / site to site with special security/routing constraints Asuswrt-Merlin 7
F Create default VPN for all devices and special VPN for a subset of devices overwriting default Asuswrt-Merlin 2

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 873 (members: 15, guests: 858)
Top