[SOLVED] TP-Link TL-WR841ND v9 with CloudFlare DNS

Post new topic   Reply to topic    DD-WRT Forum Index -> Atheros WiSOC based Hardware
Author Message
fw190
DD-WRT Novice


Joined: 29 Aug 2019
Posts: 7

PostPosted: Thu Aug 29, 2019 9:41    Post subject: [SOLVED] TP-Link TL-WR841ND v9 with CloudFlare DNS Reply with quote
Hi! I'm trying to set up CloudFlare DNS on my TP-Link TL-WR841ND v9 router.

I have upgraded to DD-WRT v3.0-r40559 std (08/06/19)

as recommended here

https://dd-wrt.com/support/router-database/?model=WR841N(D)_9.x

but when I set it up like shown in the pdf attached to this message I still have the DNS provided by the internet provider. Am I doing something wrong? How to change the DNS to the ones that I want?


Last edited by fw190 on Fri Aug 30, 2019 11:20; edited 1 time in total
Sponsor
Alozaros
DD-WRT Guru


Joined: 16 Nov 2015
Posts: 6408
Location: UK, London, just across the river..

PostPosted: Thu Aug 29, 2019 10:23    Post subject: Reply with quote
its a know situation...
you must use DNSmasq to avoid it...
turn DNSmasq on and add those lines in advanced Dnsmasq
options:

no-resolv
server=1.1.1.1
server=1.0.0.1

make sure NTP time is working
i usually use this GGL NTP time resolver
216.239.35.4

_________________
Atheros
TP-Link WR740Nv1 ---DD-WRT 55179 WAP
TP-Link WR1043NDv2 -DD-WRT 55303 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55460 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55460 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55363 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
fw190
DD-WRT Novice


Joined: 29 Aug 2019
Posts: 7

PostPosted: Thu Aug 29, 2019 10:42    Post subject: Reply with quote
I have added those lines in the options,

Use DNSMasq for DNS
DHCP-Authoritative
Forced DNS Redirectio

are set to ON

I have tested both 216.239.35.4 and time.cloudflare.com for NTP and still no luck. I have to do something wrong I presume as it should work.
Alozaros
DD-WRT Guru


Joined: 16 Nov 2015
Posts: 6408
Location: UK, London, just across the river..

PostPosted: Thu Aug 29, 2019 13:47    Post subject: Reply with quote
i didn't understand?? Did you try what i recommended...?
did you go to Services and turned DNSmasq on and added those rules from above....? you also need to turn on
''Quiery DNS in Strict order''and DNSmasq for DHCP
if no luck again and you applied those above, than your ISP is forcing their DNS

finally if those above are not working..
you can add this script to start up script

[ "$( nvram get wan_get_dns )" != "" ] && \
nvram unset wan_get_dns && \
nvram unset wan_get_domain && \
nvram commit && \
stopservice dnsmasq && \
startservice dnsmasq

than to check your results....
https://www.dnsleaktest.com/

_________________
Atheros
TP-Link WR740Nv1 ---DD-WRT 55179 WAP
TP-Link WR1043NDv2 -DD-WRT 55303 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55460 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55460 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55363 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
fw190
DD-WRT Novice


Joined: 29 Aug 2019
Posts: 7

PostPosted: Thu Aug 29, 2019 14:37    Post subject: Reply with quote
Hi! I have made those settings and rebooted the router. Please, see attached files if everything is OK
fw190
DD-WRT Novice


Joined: 29 Aug 2019
Posts: 7

PostPosted: Thu Aug 29, 2019 15:14    Post subject: Reply with quote
To be on the safe side I just did a factory reset of the router and applied all of your tips and still nothing. The ISP claims that they don't force their DNS. I can force it on my laptop with those tricks:
https://forums.linuxmint.com/viewtopic.php?f=53&t=297945

but smartphones conecting to the router are bounced back to ISP DNS.

I have to go and explain the ISP thet they must block it somehow as everything is set up on the router side.
fw190
DD-WRT Novice


Joined: 29 Aug 2019
Posts: 7

PostPosted: Fri Aug 30, 2019 11:22    Post subject: Reply with quote
Thank you for your help. I went back to the ISP, poked them with a stick, and was lucky enough to meet an admin who knew that it can blocked on their side and he made some sort of a special rule to use other DNS on my account and voila. It works!
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Atheros WiSOC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum