[Freedombox-discuss] UPDATE: Dnsmasq starts reliably on both interfaces, but...
Rick Thomas
rick.thomas at pobox.com
Thu Oct 21 21:25:57 BST 2021
Sounds like you've got another machine on the LAN that is answering dhcp requests and preempting the dnsmasq. Have you got a NAT router that might be doing that?
Rick
On Thu, Oct 21, 2021, at 12:12 PM, A. F. Cano wrote:
> On Sat, Oct 16, 2021 at 10:24:17PM -0700, Sunil Mohan Adapa wrote:
>> On 10/16/21 10:25, A. F. Cano wrote:
>> [...]
>> > Ok, so this seems to have worked.
>>
>> Reboot a few times perhaps to ensure that fix indeed is working.
>
> After multiple reboots after multiple updates, dnsmasq starts reliably
> on both interfaces:
>
> $ ps aux | grep dns
> nobody 647 0.0 0.0 14020 3992 ? S Oct19 0:00
> /usr/sbin/dnsmasq --conf-file=/dev/null --no-hosts --keep-in-foreground
> --bind-interfaces --except-interface=lo --clear-on-reload
> --strict-order --listen-address=192.168.224.27
> --dhcp-range=192.168.224.36,192.168.224.254,60m --dhcp-lease-max=50
> --dhcp-leasefile=/var/lib/NetworkManager/dnsmasq-enp2s0.leases
> --pid-file=/run/nm-dnsmasq-enp2s0.pid
> --conf-dir=/etc/NetworkManager/dnsmasq-shared.d
> nobody 662 0.0 0.1 14020 4520 ? S Oct19 0:01
> /usr/sbin/dnsmasq --conf-file=/dev/null --no-hosts --keep-in-foreground
> --bind-interfaces --except-interface=lo --clear-on-reload
> --strict-order --listen-address=192.168.200.27
> --dhcp-range=192.168.200.36,192.168.200.254,60m --dhcp-lease-max=50
> --dhcp-leasefile=/var/lib/NetworkManager/dnsmasq-enp3s0.leases
> --pid-file=/run/nm-dnsmasq-enp3s0.pid
> --conf-dir=/etc/NetworkManager/dnsmasq-shared.d
>
> So now internal machines get assigned addresses from the ranges
> specified. However, from the first paragraph in the dnsmasq man page:
>
> Dnsmasq accepts DNS queries and either answers them from a small, lo‐
> cal, cache or forwards them to a real, recursive, DNS server. It loads
> the contents of /etc/hosts so that local hostnames which do not appear
> in the global DNS can be resolved and also answers DNS queries for DHCP
> configured hosts. It can also act as the authoritative DNS server for
> one or more domains, allowing local names to appear in the global DNS.
> It can be configured to do DNSSEC validation.
>
> "It loads the contents of /etc/hosts so that local hostnames which do
> not appear in the global DNS..."
>
> This is exactly what I wanted. In fact I have added all my local hosts
> to the FreedomBox /etc/hosts file, in the form of:
>
> 192.168.224.19 <local-machine-name>.local <local-machine-name>
>
> but those IP numbers are ignored and local machines are assigned high
> numbers (178 in the case of the machine above), even after I changed the
> 19 to 39, so it would be inside the range of 36-254 as specified in the
> command line arguments, and rebooted. Something is not working as the
> manual says it should.
>
>> [...]
>> I don't know if dnsmasq can do this but if it can, then the one that is
>> spawned by Network Manager can be configured using a little trick[1] (just
>> note the configuration file and write your own configuration in there).
>
> This seems to address another issue. I only have 37 entries in
> /etc/hosts, some of which are not in use at the moment.
>
>> [...]
>
> Also, the "no route to host" issue remains. I have to turn off the
> firewall for anything to get out/in. I've noticed the problem with imap
> and fetchmail, matrix/Element and Quassel. Web traffic works ok but
> only because it goes through privoxy on the FreedomBox.
>
> There is also the issue of communicating between the 2 internal
> interfaces. Nothing seems to get through between them and turning off
> the firewall doesn't affect this. I can't do unison syncs or ssh
> between machines on the 2 sub-nets, not even ping.
>
> From a machine on the 192.168.200.x sub-net:
>
> ping 192.168.224.178
> PING 192.168.224.178 (192.168.224.178) 56(84) bytes of data.
> From 192.168.200.27 icmp_seq=1 Destination Port Unreachable
> From 192.168.200.27 icmp_seq=2 Destination Port Unreachable
> From 192.168.200.27 icmp_seq=3 Destination Port Unreachable
>
> 27 is the FreedomBox.
>
> Any ideas? anyone? Thanks.
>
> Augustine
>
>> Links:
>>
>> 1) https://en.m.wikibooks.org/wiki/FreedomBox_for_Communities/Network_Configuration#Configuring_DHCP_Leases_and_Range
>>
>> --
>> Sunil
>
> _______________________________________________
> Freedombox-discuss mailing list
> Freedombox-discuss at alioth-lists.debian.net
> https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/freedombox-discuss
More information about the Freedombox-discuss
mailing list