Modify

Opened 22 months ago

Last modified 22 months ago

#22171 new defect

dns redirect failed

Reported by: anonymous Owned by: developers
Priority: normal Milestone: Designated Driver (Trunk)
Component: packages Version: Trunk
Keywords: Cc:

Description

i've set different dns server in network manager than the one router is using and was still able to resolve using that server.

this the redirect rules:

iptables -t nat -I PREROUTING -p tcp --dport 53 -j REDIRECT --to-ports 53
iptables -t nat -I PREROUTING -p udp --dport 53 -j REDIRECT --to-ports 53

fw status:

Table: NAT

Chain PREROUTING (Policy: ACCEPT, Packets: 551, Traffic: 89.27 KB)
Pkts.	Traffic	Target	Prot.	In	Out	Source	Destination	Options
0	0.00 B	REDIRECT	tcp	*	*	0.0.0.0/0	0.0.0.0/0	tcp dpt:53 redir ports 53

Attachments (0)

Change History (1)

comment:1 Changed 22 months ago by anonymous

I'm using dns redirect with ipset, but I'm using the firewall rules for it and it works fine:

config redirect
	option name 'Divert DNS'
	option src 'lan'
	option proto 'tcp udp'
	option src_dport '53'
	option dest_port '53'
	option target 'DNAT'

I also use a private rule in firewall.user for redirecting it through my OpenVPN tunnel:

iptables -w -A OUTPUT -t mangle -p tcp --dport 53 -j MARK --set-mark 2
iptables -w -A OUTPUT -t mangle -p udp --dport 53 -j MARK --set-mark 2

Add Comment

Modify Ticket

Action
as new .
Author


E-mail address and user name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.