Joined: 16 Nov 2015 Posts: 7063 Location: UK, London, just across the river..
Posted: Tue Jun 24, 2025 15:34 Post subject:
ssergey wrote:
Alozaros wrote:
...
Big Thanks to Brain Slayerfor fixing devcrypto problem...and path to certificates for SmartDNS!!!
VPN client mode is fully operational again... Happy days
Just hope SmartDNS stays up (doesn’t become unavailable) during extended use!!!
define---> doesn’t become unavailable during extended use
In my case it is fully operational...im using DoT servers i have x3 of them all with adblock&malicious filter, but mostly is using the fastest..so, only one..as i dont want to use round robin...option...
Sadly my experience with SmartDNS... sometimes has a bitter taste...and recently there ware some updates and fixes from the upstream and some small fixes downstream...on the current build..its working so far...so good...
-recently quic support was introduced to SmartDNS...but when i tied it, it started to behave odd..as well i always run SmartDNS along with DNSmasq (the correct way).. _________________ Atheros
TP-Link WR1043NDv2 -DD-WRT 62606 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 -DD-WRT 63257 GTW/SmDNS/DoT,AD-Blk,Forced DNS,AP&Net Isolation,x2VLAN,Vanilla
Netgear R7800 --DD-WRT 62606 Gateway/DNSCryptv2,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla,VPN cli
Netgear R9000 --DD-WRT 62606 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Dynalink DL-WRX36-DDWRT 62606
Broadcom
Netgear R7000 --DD-WRT 63257 GTW/DNScrypt-proxy2/AD-Block,IPset Firewall,Forced DNS,x4VLAN,VPN cli
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
define---> doesn’t become unavailable during extended use
In my case it is fully operational...im using DoT servers i have x3 of them all with adblock&malicious filter, but mostly is using the fastest..so, only one..as i dont want to use round robin...option...
Sadly my experience with SmartDNS... sometimes has a bitter taste...and recently there ware some updates and fixes from the upstream and some small fixes downstream...on the current build..its working so far...so good...
-recently quic support was introduced to SmartDNS...but when i tied it, it started to behave odd..as well i always run SmartDNS along with DNSmasq (the correct way)..
Well, DNSmasq is down again. It lasted for a day.
Code:
❯ dig @195.0.1.254 -p 6053 www.google.com +short
;; communications error to 195.0.1.254#6053: timed out
;; communications error to 195.0.1.254#6053: timed out
;; communications error to 195.0.1.254#6053: timed out
Joined: 16 Nov 2015 Posts: 7063 Location: UK, London, just across the river..
Posted: Wed Jun 25, 2025 14:36 Post subject:
@ssergey Well...on all of my routers, i don't have any problems with DNSmasq...Very often problems occur when there is misconfiguration...as we don't know your current config, it will be pure guessing..and random shots...so provide more details...and make sure there is no rogue client in your network..
If that was a common issue, more people would complain...isn't it
In fact there ware similar complains in the past all related to very heavy use of DNSmasq misconfigurated or rogue client that floods with requests...you can try to increase the concurrent requests...if so.. _________________ Atheros
TP-Link WR1043NDv2 -DD-WRT 62606 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 -DD-WRT 63257 GTW/SmDNS/DoT,AD-Blk,Forced DNS,AP&Net Isolation,x2VLAN,Vanilla
Netgear R7800 --DD-WRT 62606 Gateway/DNSCryptv2,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla,VPN cli
Netgear R9000 --DD-WRT 62606 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Dynalink DL-WRX36-DDWRT 62606
Broadcom
Netgear R7000 --DD-WRT 63257 GTW/DNScrypt-proxy2/AD-Block,IPset Firewall,Forced DNS,x4VLAN,VPN cli
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
@ssergey Well...on all of my routers, i don't have any problems with DNSmasq...Very often problems occur when there is misconfiguration...as we don't know your current config, it will be pure guessing..and random shots...so provide more details...and make sure there is no rogue client in your network..
If that was a common issue, more people would complain...isn't it
In fact there ware similar complains in the past all related to very heavy use of DNSmasq misconfigurated or rogue client that floods with requests...you can try to increase the concurrent requests...if so..
It also seems strange to me that only I see the problem. On the other hand, the config has not been changed for many months
Try not specifying a port in dig. You are shortcutting dnsmasq.
That's right, I skip dnsmasq. That's how it's supposed to be.
Dnsmasq is only for the internal zone. The idea is to keep open traffic out of the internet
Joined: 16 Nov 2015 Posts: 7063 Location: UK, London, just across the river..
Posted: Wed Jun 25, 2025 17:11 Post subject:
ssergey wrote:
kernel-panic69 wrote:
Try not specifying a port in dig. You are shortcutting dnsmasq.
That's right, I skip dnsmasq. That's how it's supposed to be.
Dnsmasq is only for the internal zone
if you disable DNSmasq for DNS completely it will work to but its not advised, bear in mind DNSmasq is the backbone of DDWRT..and in certain cases its due...to be enabled...as for SmartDNS, VPN, WG and ect.
just disable the cache for DNSmasq as SmartDNS has its own cache if you need it..
in my case i use DNSmasq where i have my adblocker and SmartDNS just for encryption and it works well..as well i know other forum members that will advise the same
here is a sample SmartDNS config
im usually using only tls prior to https...servers
disable prefetch - pefetch generates more DNS traffic..
DNSmasq cache is 0 to not interfere with SmartDNS cache where you can control it too... _________________ Atheros
TP-Link WR1043NDv2 -DD-WRT 62606 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 -DD-WRT 63257 GTW/SmDNS/DoT,AD-Blk,Forced DNS,AP&Net Isolation,x2VLAN,Vanilla
Netgear R7800 --DD-WRT 62606 Gateway/DNSCryptv2,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla,VPN cli
Netgear R9000 --DD-WRT 62606 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Dynalink DL-WRX36-DDWRT 62606
Broadcom
Netgear R7000 --DD-WRT 63257 GTW/DNScrypt-proxy2/AD-Block,IPset Firewall,Forced DNS,x4VLAN,VPN cli
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Joined: 08 May 2018 Posts: 16696 Location: Texas, USA
Posted: Wed Jun 25, 2025 17:21 Post subject:
LAN clients hit dnsmasq first, which forwards queries to smartdns. That's how it works unless you disable dnsmasq for DNS. Anyhow, more to point, it works either way for me so we'd need your full configuration details.
I didn't say that I want to disable dnsmasq, it handles the internal zone.
This configuration worked for me without problems for many months.
Why should I disable dualstack if I use both protocols?
where you can control it too...
