DNS forwarding stops working

SQBI · November 27, 2016, 2:26pm

DNS forwarding stops working after each TO reboot. Forwarding is still checked in Foris, but the DNS leak test (https://www.perfect-privacy.com/dns-leaktest/) shows my ISP’s DNS, not the forwarded one. Temporary solution? After each reboot I have to uncheck forwarding in Foris, click 'Save", check it again and save, then it begins to work properly. This is surely uncomfortable.
Some sites in Chrome resolve much slower without DNS forwarding.

Ondrej_Caletka · November 27, 2016, 3:25pm

It looks like you’ve discovered a new bug

The kresd starts sooner than the wan is up, and by that time, there are no known DNS servers to forward to. Because of that, there is a hotplug hook restarting the resolver after changing status of a interface. But only for Unbound. And what’s more, it doesn’t work with the current unbound setup because it links to the /etc/config/unbound instead of /etc/config/resolver.

Ondrej_Caletka · November 27, 2016, 6:02pm

I’ve tried to fix it here: https://github.com/CZ-NIC/turris-os-packages/pull/13

If you are brave enough, feel free to edit the initscripts yourself (do schnapps create before). My WAN interface gets up before the resolver so I’m not hitting the issue either, so testing from you would be a good feedback.

alex · November 27, 2016, 7:44pm

I had the same issue. I tried your fix and I can confirm that now after a reboot the FORWARD lines appear in /tmp/kresd.config, whereas before I had to disable and re-enable the relevant option in foris. Thanks for the quick fix.

SQBI · November 27, 2016, 8:44pm

I would eagerly try your fix, but I’m a ssh newbie here, using only GUI’s on OpenWRT for years What files should I edit and how?

Ondrej_Caletka · November 27, 2016, 8:56pm

create new file named /etc/hotplug.d/iface/40-resolver-reload with this contents.
add this line to /etc/init.d/kresd

That should be enough.

SQBI · November 27, 2016, 10:34pm

Solved! Thank you!

SQBI · January 22, 2017, 1:43am

The bug came back DNS forwarding stops working after several reboots.

SQBI · February 11, 2017, 9:42pm

And again… I have to re-enable it to make it work

SQBI · February 19, 2017, 12:08am

Can’t this be fixed?

vcunat · February 19, 2017, 11:24am

If the address-set you need to forward to is stable, it should help you to hard-code them into your config, as a work-around.

SQBI · February 19, 2017, 6:09pm

Could be, but it is not quite the solution I would wish to have. This should work by design. Now, after each reboot, I have to re-enable forwarding in Foris to make it work.

vcunat · February 19, 2017, 7:12pm

Yes, of course it should. I meant something to use in the meantime…