[dale_gribble39]

I think there are a few misunderstandings. Explain to us what happens when you un-tick "use DNSMasq for DNS", as advised in the guide. Does it not disable advertising router's IP for DNS to the LAN? Please explain fully, concisely, and show us without a shadow of a doubt what it does, please. K,thanks.

[marcus83]

guys, the situation is this:

if I use the "use DNSMasq for DNS" option I have many problems, including not entering the AGH GUI, and on many devices, it gives me a network configuration error (dhcp) so I had to deselect it, and everything started working again...
so since I'm not an expert I ask you if you have time, to try to do a test using AGH with DNSmasq and the related configurations.
following this guide everything works apart from the error of option 6, which I then removed from the configurations, everything else is ok.

PS.
sorry for my English...

[ho1Aetoo]

If you use dnsmasq as a proxy then there is no individual client sorting in AGH.
AGH only sees the router as a client.

Think carefully about whether you want this.
I won't go to the trouble of describing how to configure it if the configuration is ultimately undesirable.

[dale_gribble39]

Didn't think anyone would answer my question(s), at least not directly.

https://github.com/mirror/dd-wrt/blob/master/src/router/kromo/dd-wrt/index.asp#L222

https://github.com/mirror/dd-wrt/blob/master/src/router/httpd/visuals/dd-wrt.c#L1183

https://github.com/mirror/dd-wrt/blob/master/src/router/services/services/dnsmasq.c#L793

https://github.com/mirror/dd-wrt/blob/master/src/router/libutils/libutils/bcmutils.c#L622

If you untick "use dnsmasq for DNS" per the guide, it will not advertise the router's LAN IP as DNS resolver, hence reasoning for adding no-resolv and dhcp option to additional configs to point to AGH. Leaving it ticked will enable dnsmasq proxy as resolver and circumvent AGH.

[marcus83]

until someone makes a guide like this with using DNSMasq and AGH, I won't use it, so for now it's fine.

we can end this "dispute" since it is not relevant to the thread.

thanks anyway for the replies.

[Alozaros]

You can still use AGH and DNSmasq...just use the correct setup...
As it was noted many times..(and one reason for me to abandon the thread)
-there must be some tolerance from AGH side in relation of DHCP and DNS..
-using https for AGH GUI is a must...(i know its an optional, but its a must)
-there is this note of a doubt, as when AGH takes over the router services ...we don't know, what
could be the communication behind...and the robustness of the service...(in terms of DDoS and other attacks) as, more new foreign services are introduced to DDWRT more attack vectors...
I don't see any reason to disable DNSmasq...
-you can stop its cache (so, no caching, no cache poisoning)
-you can disable its other futures like query in strict order, DNSSEC and other options, you can even disable DHCP and rely on upstream DHCP server/forwarder and ect...
-DNSmasq and its DNS encrypted solutions that i used / tested.. all work ok with DNSmasq as a forwarder...and even caching works...!!
The only advantage i see of AGH is QUIC and that is all..to me it doesn't ring the bell..and i don't need a API/GUI for it...if you really need a sophisticated DNS resolving with beautiful graph's and GUI, than Pi hole for DNS is the way...good read and links in the forum thanks to ho1Aetoo...but than again more external stuff around, more fiddling...so, simplicity ...sometimes wins...

[blaser]

You mentioned on the top to add this line
dhcp-option=6,Router-IP

shouldn't it be:
dhcp-option=br0,6,Router-IP

I keep getting error messages:

Ignoring duplicate dhcp-option 6

[dale_gribble39]

Amplifying information regarding contents of resolv.conf, resolv.dnsmasq, and dnsmasq.conf, etc. and configuration screenshots would help us determine the cause of the message.

[blaser]

after changing it to
dhcp-option=br0,6,192.168.1.1

few problems were solved:
1) no more errors in the messages file.
2) it uses only the Upstream DNS servers configured and not my provider dns in parallel

[ho1Aetoo]

Just read what I wrote two pages ago.

It still applies and reducing the entry to just br0 doesn't make it any better.

[blaser]

you are correct, I removed that entry completely and it is working good

[Alozaros]

well.... I just checked my DNScrypt proxy v2 config and it turned out, it does support QUIC.. support has been added not long ago...

but i never had any interest using it....now this is intriguing...

# Version 2.1.2
- Support for DoH over HTTP/3 (DoH3, HTTP over QUIC) has been added.

current version is Version 2.1.5 ---> I'll have a QUIC look when i can

if the QUIC was the holly grall on this thread...