Menu
What's new
By:
Filters Better Search

Correct Way to Run Additional DNS Server On Second IP on Port 53?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

H

HarryMuscle

Senior Member
I'm trying to run an additional custom DNS server on a second IP address on port 53. However, it turns out that DNSMasq is configured with bind-dynamic which means it automatically binds to any new IP addresses added to the br0 (and other) interface. That means I can't start a second DNS server on a second IP address cause DNSMasq is already using port 53 on it. The opposite of bind-dynamic would be to configure DNSMasq with bind-interfaces so that it only binds to addresses existing on the interfaces when it starts up. However, I'm not sure if this is a safe thing to change or if DNSMasq is configured with bind-dynamic on purpose so that it continues to function under certain circumstances were IP addresses change. What would be the best approach to run a second DNS server on a second IP address on port 53 on the router?

Thanks,
Harry
 
Last edited:
With all the stuff you're trying to do I think a raspberry pi or pfsense might be a better fit for you honestly.

Maybe someone has done it and will reply but you probably will just have to try changing it and seeing what happens.
 
drinkingbird said:
With all the stuff you're trying to do I think a raspberry pi or pfsense might be a better fit for you honestly.

Maybe someone has done it and will reply but you probably will just have to try changing it and seeing what happens.
Click to expand...
Maybe, but I'm determined to figure out how to do it on the router even if I don't end up keeping it that way :)
 
HarryMuscle said:
I'm trying to run an additional custom DNS server on a second IP address on port 53.
Click to expand...

FWIW, it's fairly easy to achieve this sort of effect with old-school ISC BIND. You don't actually run more than one bind daemon, you just configure it to serve multiple "views" of what it knows, thus avoiding the overhead of redundant servers. Perhaps DNSMasq can be set up in a similar fashion, but I've never used that in anger so I'm not sure.

HarryMuscle said:
However, I'm not sure if this is a safe thing to change
Click to expand...

You are right to be worried if this is your only DNS server, because if you mess it up badly enough then you will find all of your internet access to be dead-in-the-water, and recovering from that will be a bit painful. Can you do your experimentation on a spare router? This isn't really rocket science, but it's still best to lower the stakes for mistakes.
 
You must log in or register to reply here.

Similar threads

Z
VPN Server on port 53/443?
2
Replies
26
Views
2K
Maverickcdn
Maverickcdn
H
Multiple DNS Servers for WireGuard Client?
Replies
0
Views
686
HarryMuscle
H
H
Any Risk In Adding Second IP Address To br0 Interface?
Replies
3
Views
575
drinkingbird
drinkingbird
L
ASUS DDNS bug?
Replies
2
Views
860
macster2075
macster2075
C
Does default dnsmasq configuration store LAN names?
Replies
6
Views
361
chrisisbd
C
Similar threads
Thread starter Title Forum Replies Date
M Finding my Correct Network/Subnet Mask Asuswrt-Merlin 10
H Correct Script To Use For Changing Routes? Asuswrt-Merlin 1
T Correct DNS settings to use AdGuard Home Asuswrt-Merlin 35
StrikerXXX Correct way to configure quad9 dns in EDNS/ECS Asuswrt-Merlin 0
A Cheapest device to run VPN server Asuswrt-Merlin 6
H Does firewall-start Script Ever Run Twice With Same iptables Rules? Asuswrt-Merlin 13
H Can RT-AX86U Pro Run Non Pro Firmware? Asuswrt-Merlin 21
H Does wgclient-start Script Run Before Or After WireGuard Client Is Started? Asuswrt-Merlin 6
H WireGuard VPN PreUp Option to Run Command Before Client Connects? Asuswrt-Merlin 3
T Create a Cron Job to Run on a Schedule Asuswrt-Merlin 9

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 820 (members: 35, guests: 785)
Top