RUTX11 07.11.3 dnsmasq listen interfaces

flebourse · January 14, 2025, 8:32pm

Hello,

I want to have dnsmasq listening on a wireguard interface in addition to lan and wan.
Unfortunately the drop-down menu in Network=>DNS=>Advanced Settings=>Listen Interfaces proposes only lan and wan.
I have to change manually the “option interface” field in /etc/config/dhcp to add the wg one, and restart dnsmasq.
Worse, the manually added setting is lost if I change another parameter via the UI, for example logqueries.
Using “list interface” instead of “option interface” doesn’t help …

On vanilla Openwrt, the drop-down menu contains the list of all interfaces present.

Regards,

Martynas · January 15, 2025, 7:18am

Hello,

Thank you for sharing the details of your request. I have forwarded your suggestion and the specifics of this matter to our R&D team for further review. Once I receive an update from them, I will promptly inform you.

Best regards,

flebourse · March 6, 2025, 7:11pm

This issue is not fixed in version 7.13.1
Proposed choices: lan wan wan6 only.
I still need to edit /etc/config/dhcp to add the wireguard interfaces I want dnsmasq to listen to.

Martynas · March 7, 2025, 6:31am

Hello,

By default,DNSmasq listens on all interfaces, so there’s a workaround where this situation can be managed through the firewall settings by allowing the WireGuard zone input for port 53.

If you need further assistance or clarification, feel free to reach out.

Best regards,

flebourse · March 7, 2025, 12:54pm

Yes, but that’s not what I want. I don’t want it to listen on wan/wan6 only lan and one of the wg interfaces.

The wg zone permissions are already set to Accept/Accept/Accept no need to have a special rule for port 53.

Here is my dnsmasq config:

config dnsmasq                                             
        option domainneeded '1'                  
        option filterwin2k '0'                             
        option rebind_localhost '1'              
        option local '/mt/'                                
        option domain 'mt'                       
        option expandhosts '1'                             
        option nonegcache '0'                    
        option authoritative '1'                           
        option readethers '1'                    
        option leasefile '/tmp/dhcp.leases'                
        option nonwildcard '1'                   
        option ednspacket_max '1232'                       
        option dhcpscript '/usr/sbin/dhcpinfo.sh'
        option boguspriv '1'                               
        list server '/tls/192.168.19.1'  
        list server '/19.168.192.in-addr.arpa/192.168.19.1'
        option logqueries '0'            
        option localise_queries '0'       
        option strictorder '0'           
        option localservice '0'           
        option rebind_protection '0'     
        option interface 'lan wgtls'

The UI breaks the option interface line each time this section is saved, and wgtls isn’t in the “Listen interfaces” list.

system · March 15, 2025, 8:33pm

This topic was automatically closed after 60 days. New replies are no longer allowed.