Posted: Sun Mar 22, 2020 14:53 Post subject: DNSMasq for GoogleSafeSearch not allow LOGIN google Account!
Dear all,
I have setted, with success, my TL-WR1043ND with DD-WRT v3.0-r36079 to have a NEW WiFi AP connection protected and filtered for my childrens:
- Setup: connection type= WAN (MY MODEM IP range is 192.168.1.*)
- Network setup= 192.168.3.1 (255.255.255.0)
- DHCP ON from 192.168.3.2 to 192.168.3.100
I have also enabled filter with OpenDSN Family filter.
Enabled and added in "Services > DNSMasq > Additional DNSMasq Options"
Joined: 04 Aug 2018 Posts: 1447 Location: Appalachian mountains, USA
Posted: Sun Mar 22, 2020 15:34 Post subject:
I doubt you can safely block gstatic.com, but I could be wrong.
The thing to do in these situations is a sort of binary search for the problem. Remove half the site-blocking lines and see if your needed services are restored. You'll then know which half of your lines contains the problem. Then repeat using half of the problem half, etc. You'll figure it out in not too many steps. _________________ 2x Netgear XR500 and 3x Linksys WRT1900ACSv2 on 53544: VLANs, VAPs, NAS, station mode, OpenVPN client (AirVPN), wireguard server (AirVPN port forward) and clients (AzireVPN, AirVPN, private), 3 DNSCrypt providers via VPN.
Joined: 16 Nov 2015 Posts: 6447 Location: UK, London, just across the river..
Posted: Sun Mar 22, 2020 16:02 Post subject:
kernel-panic69 wrote:
Because you are blocking and redirecting them.
yep KP69 said it....there
In general blocking things via additional DNSmasq rules has a certain limits...
consider use of more sophisticated adblocking script
with whitelisting...it will help, many available in the forum...have a search...
as we don't know your router version i cannot recommend you an upgrade to a newer build, but im sure your reading/searching skills, will help you in that endeavor, as newer builds have a lots of updates especially regarding DNSmasq
Posted: Mon Mar 23, 2020 15:27 Post subject: last and stable for my Router TP-LINK TL-WR1043N
Alozaros wrote:
as we don't know your router version i cannot recommend you an upgrade to a newer build...
I have the TP-LINK Router code TL-WR1043ND
Some months ago I asked which version of DD-WRT was the last and stable for my Router, and I have installed the release DD-WRT v3.0-r36079.
Do you know if a newer version is compatible with TL-WR1043ND ??
Joined: 16 Nov 2015 Posts: 6447 Location: UK, London, just across the river..
Posted: Tue Mar 24, 2020 11:03 Post subject:
kernel-panic69 wrote:
Newer firmware isn't going to fix a misconfiguration.
yep, true so true...(Winnie-the-Pooh)
lumanga wrote:
I have the TP-LINK Router code TL-WR1043ND
Some months ago I asked which version of DD-WRT was the last and stable for my Router, and I have installed the release DD-WRT v3.0-r36079.
Do you know if a newer version is compatible with TL-WR1043ND ?? Thanks in advance!
nope i don't as we still don't know which is your router model version...
have a look at the sticker...and report...
or at general statistics menu...if you are lucky...
if you find it, have a look at the forum threads as this is your homework not mine.. _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
This (along with the "Forced DNS Redirection" checkbox on the setup page) ensures that all of my devices are going to use OpenDNS (on which I have the family filters set), and that any requests for Google, Bing, etc., will go to their safe search counterparts.
(I also have all of Google's country-specific entries in there as well, but that's another ~200 lines I didn't want to copy above.)