Router/Version: Asus RT-AC68U rev B1
Kernel: Linux 4.4.283 #4112 SMP Thu Sep 23 03:19:12 +07 2021 armv7l
Version: r47481 (09/24/21)
Previous: r47381 (09/08/21)
Mode: Client Bridge x2 and Client x1
Status: Working - No issues
Uptime: 9hrs, 54min
Upgrade: via GUI, under https
Reset: No _________________ ASUS RT-AC3100 AP Merlin 386.12_4
ASUS RT-AC68U Media Bridge/Merlin 386.12_4 (x2)
ASUS RT-AC68U AP r54604
ASUS RT-AC68U Gateway/AP r54604
Edgerouter-4, v2.0.9-hotfix7
Joined: 31 Jul 2021 Posts: 2146 Location: All over YOUR webs
Posted: Sat Sep 25, 2021 12:54 Post subject: Fixed: 2) website loading issue in various browsers
So. Essentially I can rule out Firefox and other browsers for this issue.
The cause seems to be Cloudflare DNS 1.1.1.1 and adding a second DNS server 1.0.0.1 seems to have normalized the issue to a non issue, not been able to repro since.
Joined: 18 Mar 2014 Posts: 12887 Location: Netherlands
Posted: Sat Sep 25, 2021 15:28 Post subject:
After upgrading I get a disconnected messages.
But I am at my holiday home upgrading the spare router via Edge and wirelessly so actually doing everything which is warned against (Do not tell this to anybody).
Everything works fine except for SmartDNS. First time a browser tried to visit a domain name I get a DNS_PROBE_FINISHED_NXDOMAIN instantly. A refresh to the page fixes the issue.
Can't reproduce by running a query to a unknown domain using dig on my pc.
Router/Version: Netgear R6250
Firmware: DD-WRT v3.0-r47481 std (09/24/21)
Kernel: Linux 4.4.283 #4112 SMP Thu Sep 23 03:19:12 +07 2021 armv7l
Mode: Gateway, Wireless AP, unbound & CTF & FA Enabled. NAT/QoS Off
Reset: No, not this time
Previous : r47474
Upgrade: Web without reset.
Temperatures CPU 75.2 °C / WL0 shutdown /WL1 55.8 °C
Load: 0.10, 0.04, 0.00
Uptime 19h30m
Errors: I do not know what the hell happed, because after upgrade, no DHCP service even I can see http://192.168.1.1 (only my PC Static IP 192.168.1.2) and find them working, same in LAN and WiFi even WPA2 password is correct. That means it has something trouble. Later when I checked carefully, the wireguard enable! so Disable wireguard, and then DHCP works both LAN and WiFi.
Router/Version: NETGEAR R7000 / DD-WRT v3.0-r47481 std
File/Kernel: Linux 4.4.283 #4112 SMP Thu Sep 23 03:19:12 +07 2021 armv7l
Previous/Reset: No
Mode/Status: Gateway / Working
Issues/Errors: Maybe?
Everything works fine except for SmartDNS. First time a browser tried to visit a domain name I get a DNS_PROBE_FINISHED_NXDOMAIN instantly. A refresh to the page fixes the issue.
Can't reproduce by running a query to a unknown domain using dig on my pc.
Reverted back to DD-WRT v3.0-r47117 std (08/01/21). Issue no longer exists. Probably some bug.
r47182 std > also works fine
r47256 std > also works fine
r47381 std > also works fine
Just tested again and it seem to be broken in r47461 and every version after. _________________ 1x Netgear R7800 (latest); 3x Netgear R7000 (latest); 2x Asus RT-N16 (v3.0-r47656); 2x Fonera 2100 (v3.0-r45454).
Last edited by TCB13 on Sat Sep 25, 2021 17:40; edited 3 times in total
Joined: 08 May 2018 Posts: 14221 Location: Texas, USA
Posted: Sat Sep 25, 2021 18:11 Post subject:
@TCB13: Are you using browsers that do not have a secure dns configuration capability or no? If you have a modern browser (FF Quantum, Chrome, Opera, etc.) check the secure dns settings. _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
@TCB13: Are you using browsers that do not have a secure dns configuration capability or no? If you have a modern browser (FF Quantum, Chrome, Opera, etc.) check the secure dns settings.
All my browsers are pointed at the router IP for DNS, by using system DNS settings. Latest versions of Firefox and Chrome.
What is strange is that the issue only seems to happen after build r47381. Every build after that shows the same behavior.
I'm assuming since it works fine until that build it should be something that changed in dd-wrt...
Joined: 08 May 2018 Posts: 14221 Location: Texas, USA
Posted: Sat Sep 25, 2021 19:36 Post subject:
Look in Chrome and Firefox settings/preferences as they override this, most likely. Is secure dns enabled, and is it set to current provider (which would be whatever your other settings would tell it to use). If so, then perhaps your dns server(s) do not support secure dns... or are having a hiccup in secure dns resolution. I do believe, though, that both smartdns and dnsmasq updates were involved, but we'd need confirmation from others.
Firmware: v3.0-r47481 std (09/24/21)
Router/Version: Netgear R7000 Kernel: Linux 4.4.283 #4112 SMP Thu Sep 23 03:19:12 +07 2021 armv7l
Previous: v3.0-r47474 std (09/20/21)
Mode/Status: AP wired and wireless / Up and running for 1 1/2 days
Reset: Soft boot before and after upgrade
Temperatures: CPU 61.4 °C / WL0 46.6 °C / WL1 51.8 °C
Issues/Errors: Nothing significant
Updated via webif. No 'nvram erase' this time, last one was in July 2018 (r36325).
Upload and Download speeds are to ISP spec. Nothing unexpected in the syslog.
Current basic R7000 setup (subject to change of course):
- Static WAN IP
- Shortcut Forwarding Engine: CTF, Flow Acceleration: Disabled
- STP - Enabled
- IPv4 only, both WAN and LAN
- LAN DHCP Enabled
- Not currently forwarding any ports
- Wireless: AP, Regulatory Domain = CANADA, wl0 Mixed (ch. 6), wl1 AC/N-Mixed (ch. 36, VHT80), AES
- 1 wireless VLAN on wl0
- SNMP disabled, SSH enabled, Telnet disabled
- Firewall enabled, Log Level high
- Syslog: to local server. klogd: disabled.
- USB support - Off
- No custom scripts
- No: ttraf, Tor, VNC, Zabbix, VPN, Radius, OpenVPN
- No: UPnP, DMZ, QoS
- No: Samba, CIFS, JFFS2, miniDLNA, Entware, Optware _________________ Netgear R7000: v3.0-r54248 std (11/29/23)
EdgeRouter-X: EdgeOS v2.0.9-hotfix 7
Joined: 08 May 2018 Posts: 14221 Location: Texas, USA
Posted: Sun Sep 26, 2021 0:42 Post subject:
egc wrote:
After upgrading I get a disconnected messages.
But I am at my holiday home upgrading the spare router via Edge and wirelessly so actually doing everything which is warned against (Do not tell this to anybody).
Disconnected message probably because the wireless goes down while the router reboots.
"Closing network"; The upgrade function via webUI timing vs. client networking. This is why it's suggested to have an unmanaged switch in between router and client for some procedures. This really isn't an issue, unless you want BrainSlayer to change the timing to wait the amount of time for the slowest-to-flash-via-webUI device (Care to wait a bleeping hour?)... _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Joined: 16 Nov 2015 Posts: 6437 Location: UK, London, just across the river..
Posted: Sun Sep 26, 2021 11:01 Post subject:
kernel-panic69 wrote:
Look in Chrome and Firefox settings/preferences as they override this, most likely. Is secure dns enabled, and is it set to current provider (which would be whatever your other settings would tell it to use). If so, then perhaps your dns server(s) do not support secure dns... or are having a hiccup in secure dns resolution. I do believe, though, that both smartdns and dnsmasq updates were involved, but we'd need confirmation from others.
yep more likely SmartDNS and DNSmasq new updates issue...
BS needs to fiddle with those...i also have some NXdomains using stubby and SmartDNS via jffs config...to be precise, i wiped my SmartDNS and got back to stubby on my R9000...in some way SmartDNS should be better (as on paper) but my experience shows its not..so, on my race Stubby wins again..as well i trust GetDNS guys, more than SmartDNS devs...( my believe)
TCB13 - also bear in mind,
this 2 ware causing me a grave...not the best to use, although they look awesome on a paper...
server-tls 78.46.244.143:853 -host-name: dot-de.blahdns.com
server-tls 95.216.212.177:853 -host-name: dot-fi.blahdns.com had NXdomains with those....
In general, if you want to use secure DNS via tls, nothing better than nextDNS or quad9 (my believe)
You can also use DOH via SMartDNS too not only tls...where in Stubby you cannot use DOH yet...
KP-69 using a secure DNS via layer 7, does not interfere with DNS on layer 3 at all, as it bypasses and goes as normal traffic via 443...i ve been using DOT on router level and DOH via layer 7 since i was born ... _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Joined: 29 Sep 2020 Posts: 260 Location: United States
Posted: Sun Sep 26, 2021 12:10 Post subject:
Do you have Ignore WAN DNS Enabled ?
If so do you have a nameserver in /tmp/resolv.conf
***
never mind this. i brought it up because the nameserver disappeared on me in resolv.conf . i just tested and it wasn't the ignore wan dns option causing it. it was disabling Use DNSMasq for DNS that did it
Last edited by itwontbewe on Sun Sep 26, 2021 14:02; edited 1 time in total