The short story: my OOMA Telo is making huge DNS queries which then cripples my RT-AC88U (running latest Merlin firmware) and thusly causes all my other devices to lose their internet connection.
When looking in the syslog, I see OOMA (10.0.10.11) making a bunch of DNS requests to my custom DNS setting (1.1.1.1) and then to also Google DNS servers;
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.4.4 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=51017 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.8.8 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=51017 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=1.1.1.1 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=51017 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.4.4 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=44129 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.8.8 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=44129 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=1.1.1.1 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=44129 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.4.4 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=16159 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.8.8 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=16159 DPT=53 LEN=55
it goes on and on...then eventually I get this;
dnsmasq[32016]: Maximum number of concurrent DNS queries reached (max: 150)
and the cycle starts over. The only way to get a reliable internet connection is to unplug OOMA.
The long story: I have had a OOMA Telo since 2013 which has worked fine (as far as I know) until recently when one of my IOT devices started dropping off my 2.4 wireless connection. After a ton of troubleshooting that device I found that my 2.4 wireless was having issues and then also noticed my internet connection would slow down from time to time. So I did a factory reset of my router (an older ASUS RT-AC also running Merlin), but the issues continued. So thinking my router was bad (or hacked) I replaced it with the AC88U. And still the issues continued. So I dug into the SYSLOG and found the OOMA making these DNS requests and I promptly contact OOMA support. After a bunch of troubleshooting they replaced my Telo with a new model (very good customer support), and the issues still continue. The only other thing I could think of was that I did just start using the ASUS AiProtection feature, so I turned it off, OOMA still making a ton of DNS requests.
And now I am here on the forum to see if anyone has seen this before and knows what to do about it. My next step is to factory reset the new router and do the most basic of setup just to get the router running and see if OOMA still has problems.
Thanks in advance for your input.
-John
When looking in the syslog, I see OOMA (10.0.10.11) making a bunch of DNS requests to my custom DNS setting (1.1.1.1) and then to also Google DNS servers;
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.4.4 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=51017 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.8.8 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=51017 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=1.1.1.1 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=51017 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.4.4 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=44129 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.8.8 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=44129 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=1.1.1.1 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=44129 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.4.4 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=16159 DPT=53 LEN=55
Jul 19 09:31:13 kernel: ACCEPT IN=br0 OUT=eth0 SRC=10.0.10.11 DST=8.8.8.8 LEN=75 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=UDP SPT=16159 DPT=53 LEN=55
it goes on and on...then eventually I get this;
dnsmasq[32016]: Maximum number of concurrent DNS queries reached (max: 150)
and the cycle starts over. The only way to get a reliable internet connection is to unplug OOMA.
The long story: I have had a OOMA Telo since 2013 which has worked fine (as far as I know) until recently when one of my IOT devices started dropping off my 2.4 wireless connection. After a ton of troubleshooting that device I found that my 2.4 wireless was having issues and then also noticed my internet connection would slow down from time to time. So I did a factory reset of my router (an older ASUS RT-AC also running Merlin), but the issues continued. So thinking my router was bad (or hacked) I replaced it with the AC88U. And still the issues continued. So I dug into the SYSLOG and found the OOMA making these DNS requests and I promptly contact OOMA support. After a bunch of troubleshooting they replaced my Telo with a new model (very good customer support), and the issues still continue. The only other thing I could think of was that I did just start using the ASUS AiProtection feature, so I turned it off, OOMA still making a ton of DNS requests.
And now I am here on the forum to see if anyone has seen this before and knows what to do about it. My next step is to factory reset the new router and do the most basic of setup just to get the router running and see if OOMA still has problems.
Thanks in advance for your input.
-John