DNS adblocking ignored on connected clients with Internet access provided over WiFi in 'Client' modeopenwrt: dns resolving error from wifi connected devicesHow to configure Linux Mint 18.2 for a Captive WiFi Access Point with no Internet AccessMap DNS requests coming from specific client MAC with dnsmasqUse DHCP-provided DNS or not based on connected network

Implication of namely

How to install cross-compiler on Ubuntu 18.04?

One verb to replace 'be a member of' a club

How could indestructible materials be used in power generation?

What is the fastest integer factorization to break RSA?

Getting extremely large arrows with tikzcd

OP Amp not amplifying audio signal

If a warlock makes a Dancing Sword their pact weapon, is there a way to prevent it from disappearing if it's farther away for more than a minute?

Is it possible to map the firing of neurons in the human brain so as to stimulate artificial memories in someone else?

Why was the shrink from 8″ made only to 5.25″ and not smaller (4″ or less)

Is it "common practice in Fourier transform spectroscopy to multiply the measured interferogram by an apodizing function"? If so, why?

What Exploit Are These User Agents Trying to Use?

How to travel to Japan while expressing milk?

Forgetting the musical notes while performing in concert

What is required to make GPS signals available indoors?

Should I tell management that I intend to leave due to bad software development practices?

Did 'Cinema Songs' exist during Hiranyakshipu's time?

How do conventional missiles fly?

How can saying a song's name be a copyright violation?

Bullying boss launched a smear campaign and made me unemployable

Can I hook these wires up to find the connection to a dead outlet?

How to stretch the corners of this image so that it looks like a perfect rectangle?

Why were 5.25" floppy drives cheaper than 8"?

Can someone clarify Hamming's notion of important problems in relation to modern academia?



DNS adblocking ignored on connected clients with Internet access provided over WiFi in 'Client' mode


openwrt: dns resolving error from wifi connected devicesHow to configure Linux Mint 18.2 for a Captive WiFi Access Point with no Internet AccessMap DNS requests coming from specific client MAC with dnsmasqUse DHCP-provided DNS or not based on connected network













0















Ad-blocking is done through 'dnsmasq' which reads a hosts file, when logged into the OpenWrt device blocking works as expected:



PING s0.2mdn.net (0.0.0.0): 56 data bytes
64 bytes from 127.0.0.1: seq=0 ttl=64 time=0.268 ms
...


However on a computer that is connected to the OpenWrt router (wired or wireless) blocking does not work.



danielsokolowski@DANDC-OFFICE:~$ ping s0.2mdn.net

Pinging s0-2mdn-net.l.google.com [172.217.1.166] with 32 bytes of data:
Reply from 172.217.1.166: bytes=32 time=22ms TTL=56
..


Some info :



root@481:~# cat /etc/resolv.conf
search lan
nameserver 127.0.0.1

root@481:~# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 192.168.0.1 0.0.0.0 UG 0 0 0 wlan0
10.4.81.0 * 255.255.255.0 U 0 0 0 br-lan
192.168.0.0 * 255.255.255.0 U 0 0 0 wlan0

root@481:~# netstat -lp | grep dnsmasq
tcp 0 0 192.168.0.103:domain 0.0.0.0:* LISTEN 1890/dnsmasq
tcp 0 0 localhost:domain 0.0.0.0:* LISTEN 1890/dnsmasq
tcp 0 0 481.lan:domain 0.0.0.0:* LISTEN 1890/dnsmasq
...
tcp 0 0 localhost:domain :::* LISTEN 1890/dnsmasq
...
udp 0 0 192.168.0.103:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 localhost:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 481.lan:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 0.0.0.0:bootps 0.0.0.0:* 1890/dnsmasq
...
root@481:~#

danielsokolowski@DANDC-OFFICE:~$ ipconfig

Windows IP Configuration


...

Ethernet adapter Local Area Connection 2:

 Connection-specific DNS Suffix . : lan
 Link-local IPv6 Address . . . . . : fe80::d940:8d32:8ecf:38b5%13
 IPv4 Address. . . . . . . . . . . : 10.4.81.10
 Subnet Mask . . . . . . . . . . . : 255.255.255.0
 Default Gateway . . . . . . . . . : 10.4.81.1

...

danielsokolowski@DANDC-OFFICE:~$ ping s0.2mdn.net

Pinging s0-2mdn-net.l.google.com [172.217.164.230] with 32 bytes of data:
Reply from 172.217.164.230: bytes=32 time=17ms TTL=56
Reply from 172.217.164.230: bytes=32 time=29ms TTL=56





openwrt dnsmasq hosts







share|improve this question
























  • @roaima I'm sorry I can't test the wired setup any more....I've updated the question.

    – Daniel Sokolowski
    2 days ago












  • dnsmasq is on the router, see updated answer.

    – Daniel Sokolowski
    2 days ago












  • So, it's effectively DNS-based ad-blocking, and so the clients would have to be configured to use the router's DNS service in order to take advantage of the ad-blocking. Check which DNS nameserver(s) the WiFi clients are actually using.

    – telcoM
    yesterday











  • @telcoM yes but that's the wierd thing, the clients are pointed at my router's DNS, see updated answer, hmm thinking now out loud here I'm thinking it's due to different subnets.

    – Daniel Sokolowski
    50 mins ago















0















Ad-blocking is done through 'dnsmasq' which reads a hosts file, when logged into the OpenWrt device blocking works as expected:



PING s0.2mdn.net (0.0.0.0): 56 data bytes
64 bytes from 127.0.0.1: seq=0 ttl=64 time=0.268 ms
...


However on a computer that is connected to the OpenWrt router (wired or wireless) blocking does not work.



danielsokolowski@DANDC-OFFICE:~$ ping s0.2mdn.net

Pinging s0-2mdn-net.l.google.com [172.217.1.166] with 32 bytes of data:
Reply from 172.217.1.166: bytes=32 time=22ms TTL=56
..


Some info :



root@481:~# cat /etc/resolv.conf
search lan
nameserver 127.0.0.1

root@481:~# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 192.168.0.1 0.0.0.0 UG 0 0 0 wlan0
10.4.81.0 * 255.255.255.0 U 0 0 0 br-lan
192.168.0.0 * 255.255.255.0 U 0 0 0 wlan0

root@481:~# netstat -lp | grep dnsmasq
tcp 0 0 192.168.0.103:domain 0.0.0.0:* LISTEN 1890/dnsmasq
tcp 0 0 localhost:domain 0.0.0.0:* LISTEN 1890/dnsmasq
tcp 0 0 481.lan:domain 0.0.0.0:* LISTEN 1890/dnsmasq
...
tcp 0 0 localhost:domain :::* LISTEN 1890/dnsmasq
...
udp 0 0 192.168.0.103:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 localhost:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 481.lan:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 0.0.0.0:bootps 0.0.0.0:* 1890/dnsmasq
...
root@481:~#

danielsokolowski@DANDC-OFFICE:~$ ipconfig

Windows IP Configuration


...

Ethernet adapter Local Area Connection 2:

 Connection-specific DNS Suffix . : lan
 Link-local IPv6 Address . . . . . : fe80::d940:8d32:8ecf:38b5%13
 IPv4 Address. . . . . . . . . . . : 10.4.81.10
 Subnet Mask . . . . . . . . . . . : 255.255.255.0
 Default Gateway . . . . . . . . . : 10.4.81.1

...

danielsokolowski@DANDC-OFFICE:~$ ping s0.2mdn.net

Pinging s0-2mdn-net.l.google.com [172.217.164.230] with 32 bytes of data:
Reply from 172.217.164.230: bytes=32 time=17ms TTL=56
Reply from 172.217.164.230: bytes=32 time=29ms TTL=56





openwrt dnsmasq hosts







share|improve this question
























  • @roaima I'm sorry I can't test the wired setup any more....I've updated the question.

    – Daniel Sokolowski
    2 days ago












  • dnsmasq is on the router, see updated answer.

    – Daniel Sokolowski
    2 days ago












  • So, it's effectively DNS-based ad-blocking, and so the clients would have to be configured to use the router's DNS service in order to take advantage of the ad-blocking. Check which DNS nameserver(s) the WiFi clients are actually using.

    – telcoM
    yesterday











  • @telcoM yes but that's the wierd thing, the clients are pointed at my router's DNS, see updated answer, hmm thinking now out loud here I'm thinking it's due to different subnets.

    – Daniel Sokolowski
    50 mins ago













0












0








0








Ad-blocking is done through 'dnsmasq' which reads a hosts file, when logged into the OpenWrt device blocking works as expected:



PING s0.2mdn.net (0.0.0.0): 56 data bytes
64 bytes from 127.0.0.1: seq=0 ttl=64 time=0.268 ms
...


However on a computer that is connected to the OpenWrt router (wired or wireless) blocking does not work.



danielsokolowski@DANDC-OFFICE:~$ ping s0.2mdn.net

Pinging s0-2mdn-net.l.google.com [172.217.1.166] with 32 bytes of data:
Reply from 172.217.1.166: bytes=32 time=22ms TTL=56
..


Some info :



root@481:~# cat /etc/resolv.conf
search lan
nameserver 127.0.0.1

root@481:~# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 192.168.0.1 0.0.0.0 UG 0 0 0 wlan0
10.4.81.0 * 255.255.255.0 U 0 0 0 br-lan
192.168.0.0 * 255.255.255.0 U 0 0 0 wlan0

root@481:~# netstat -lp | grep dnsmasq
tcp 0 0 192.168.0.103:domain 0.0.0.0:* LISTEN 1890/dnsmasq
tcp 0 0 localhost:domain 0.0.0.0:* LISTEN 1890/dnsmasq
tcp 0 0 481.lan:domain 0.0.0.0:* LISTEN 1890/dnsmasq
...
tcp 0 0 localhost:domain :::* LISTEN 1890/dnsmasq
...
udp 0 0 192.168.0.103:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 localhost:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 481.lan:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 0.0.0.0:bootps 0.0.0.0:* 1890/dnsmasq
...
root@481:~#

danielsokolowski@DANDC-OFFICE:~$ ipconfig

Windows IP Configuration


...

Ethernet adapter Local Area Connection 2:

 Connection-specific DNS Suffix . : lan
 Link-local IPv6 Address . . . . . : fe80::d940:8d32:8ecf:38b5%13
 IPv4 Address. . . . . . . . . . . : 10.4.81.10
 Subnet Mask . . . . . . . . . . . : 255.255.255.0
 Default Gateway . . . . . . . . . : 10.4.81.1

...

danielsokolowski@DANDC-OFFICE:~$ ping s0.2mdn.net

Pinging s0-2mdn-net.l.google.com [172.217.164.230] with 32 bytes of data:
Reply from 172.217.164.230: bytes=32 time=17ms TTL=56
Reply from 172.217.164.230: bytes=32 time=29ms TTL=56





openwrt dnsmasq hosts







share|improve this question
















Ad-blocking is done through 'dnsmasq' which reads a hosts file, when logged into the OpenWrt device blocking works as expected:



PING s0.2mdn.net (0.0.0.0): 56 data bytes
64 bytes from 127.0.0.1: seq=0 ttl=64 time=0.268 ms
...


However on a computer that is connected to the OpenWrt router (wired or wireless) blocking does not work.



danielsokolowski@DANDC-OFFICE:~$ ping s0.2mdn.net

Pinging s0-2mdn-net.l.google.com [172.217.1.166] with 32 bytes of data:
Reply from 172.217.1.166: bytes=32 time=22ms TTL=56
..


Some info :



root@481:~# cat /etc/resolv.conf
search lan
nameserver 127.0.0.1

root@481:~# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 192.168.0.1 0.0.0.0 UG 0 0 0 wlan0
10.4.81.0 * 255.255.255.0 U 0 0 0 br-lan
192.168.0.0 * 255.255.255.0 U 0 0 0 wlan0

root@481:~# netstat -lp | grep dnsmasq
tcp 0 0 192.168.0.103:domain 0.0.0.0:* LISTEN 1890/dnsmasq
tcp 0 0 localhost:domain 0.0.0.0:* LISTEN 1890/dnsmasq
tcp 0 0 481.lan:domain 0.0.0.0:* LISTEN 1890/dnsmasq
...
tcp 0 0 localhost:domain :::* LISTEN 1890/dnsmasq
...
udp 0 0 192.168.0.103:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 localhost:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 481.lan:domain 0.0.0.0:* 1890/dnsmasq
udp 0 0 0.0.0.0:bootps 0.0.0.0:* 1890/dnsmasq
...
root@481:~#

danielsokolowski@DANDC-OFFICE:~$ ipconfig

Windows IP Configuration


...

Ethernet adapter Local Area Connection 2:

 Connection-specific DNS Suffix . : lan
 Link-local IPv6 Address . . . . . : fe80::d940:8d32:8ecf:38b5%13
 IPv4 Address. . . . . . . . . . . : 10.4.81.10
 Subnet Mask . . . . . . . . . . . : 255.255.255.0
 Default Gateway . . . . . . . . . : 10.4.81.1

...

danielsokolowski@DANDC-OFFICE:~$ ping s0.2mdn.net

Pinging s0-2mdn-net.l.google.com [172.217.164.230] with 32 bytes of data:
Reply from 172.217.164.230: bytes=32 time=17ms TTL=56
Reply from 172.217.164.230: bytes=32 time=29ms TTL=56





openwrt dnsmasq hosts




openwrt dnsmasq hosts






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited 48 mins ago







Daniel Sokolowski

















asked 2 days ago









Daniel SokolowskiDaniel Sokolowski

1355




1355












  • @roaima I'm sorry I can't test the wired setup any more....I've updated the question.

    – Daniel Sokolowski
    2 days ago












  • dnsmasq is on the router, see updated answer.

    – Daniel Sokolowski
    2 days ago












  • So, it's effectively DNS-based ad-blocking, and so the clients would have to be configured to use the router's DNS service in order to take advantage of the ad-blocking. Check which DNS nameserver(s) the WiFi clients are actually using.

    – telcoM
    yesterday











  • @telcoM yes but that's the wierd thing, the clients are pointed at my router's DNS, see updated answer, hmm thinking now out loud here I'm thinking it's due to different subnets.

    – Daniel Sokolowski
    50 mins ago

















  • @roaima I'm sorry I can't test the wired setup any more....I've updated the question.

    – Daniel Sokolowski
    2 days ago












  • dnsmasq is on the router, see updated answer.

    – Daniel Sokolowski
    2 days ago












  • So, it's effectively DNS-based ad-blocking, and so the clients would have to be configured to use the router's DNS service in order to take advantage of the ad-blocking. Check which DNS nameserver(s) the WiFi clients are actually using.

    – telcoM
    yesterday











  • @telcoM yes but that's the wierd thing, the clients are pointed at my router's DNS, see updated answer, hmm thinking now out loud here I'm thinking it's due to different subnets.

    – Daniel Sokolowski
    50 mins ago
















@roaima I'm sorry I can't test the wired setup any more....I've updated the question.

– Daniel Sokolowski
2 days ago






@roaima I'm sorry I can't test the wired setup any more....I've updated the question.

– Daniel Sokolowski
2 days ago














dnsmasq is on the router, see updated answer.

– Daniel Sokolowski
2 days ago






dnsmasq is on the router, see updated answer.

– Daniel Sokolowski
2 days ago














So, it's effectively DNS-based ad-blocking, and so the clients would have to be configured to use the router's DNS service in order to take advantage of the ad-blocking. Check which DNS nameserver(s) the WiFi clients are actually using.

– telcoM
yesterday





So, it's effectively DNS-based ad-blocking, and so the clients would have to be configured to use the router's DNS service in order to take advantage of the ad-blocking. Check which DNS nameserver(s) the WiFi clients are actually using.

– telcoM
yesterday













@telcoM yes but that's the wierd thing, the clients are pointed at my router's DNS, see updated answer, hmm thinking now out loud here I'm thinking it's due to different subnets.

– Daniel Sokolowski
50 mins ago





@telcoM yes but that's the wierd thing, the clients are pointed at my router's DNS, see updated answer, hmm thinking now out loud here I'm thinking it's due to different subnets.

– Daniel Sokolowski
50 mins ago










0






active

oldest

votes












Your Answer








StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "106"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);













draft saved

draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f509757%2fdns-adblocking-ignored-on-connected-clients-with-internet-access-provided-over-w%23new-answer', 'question_page');

);

Post as a guest















Required, but never shown

























0






active

oldest

votes








0






active

oldest

votes









active

oldest

votes






active

oldest

votes















draft saved

draft discarded
















































Thanks for contributing an answer to Unix & Linux Stack Exchange!


  • Please be sure to answer the question. Provide details and share your research!

But avoid


  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.

To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f509757%2fdns-adblocking-ignored-on-connected-clients-with-internet-access-provided-over-w%23new-answer', 'question_page');

);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

getting Checkpoint VPN SSL Network Extender working in the command lineHow to connect to CheckPoint VPN on Ubuntu 18.04LTS?Will the Linux ( red-hat ) Open VPNC Client connect to checkpoint or nortel VPN gateways?VPN client for linux machine + support checkpoint gatewayVPN SSL Network Extender in FirefoxLinux Checkpoint SNX tool configuration issuesCheck Point - Connect under Linux - snx + OTPSNX VPN Ububuntu 18.XXUsing Checkpoint VPN SSL Network Extender CLI with certificateVPN with network manager (nm-applet) is not workingWill the Linux ( red-hat ) Open VPNC Client connect to checkpoint or nortel VPN gateways?VPN client for linux machine + support checkpoint gatewayImport VPN config files to NetworkManager from command lineTrouble connecting to VPN using network-manager, while command line worksStart a VPN connection with PPTP protocol on command linestarting a docker service daemon breaks the vpn networkCan't connect to vpn with Network-managerVPN SSL Network Extender in FirefoxUsing Checkpoint VPN SSL Network Extender CLI with certificate

Image
If human space travel is limited by the G force vulnerability, is there a way to counter G forces? Did Shadowfax go to Valinor? Do I have a twin with permutated remainders? Blender 2.8 I can't see vertices, edges or faces in edit mode 1960's book about a plague that kills all white people How can I make my BBEG immortal short of making them a Lich or Vampire? Alternative to sending password over mail? Is it inappropriate for a student to attend their mentor's dissertation defense? Why is Collection not simply treated as Collection<?> Took a trip to a parallel universe, need help deciphering Assassin's bullet with mercury Why is it a bad idea to hire a hitman to eliminate most corrupt politicians? I Accidentally Deleted a Stock Terminal Theme Is there a hemisphere-neutral way of specifying a season? What about the virus in 12 Monkeys? Why can't we play rap on piano? Arrow those variables! Today is the Center Modeling an IP Ad...
Read more

Cannot Extend partition with GParted The 2019 Stack Overflow Developer Survey Results Are In Announcing the arrival of Valued Associate #679: Cesar Manara Planned maintenance scheduled April 17/18, 2019 at 00:00UTC (8:00pm US/Eastern) 2019 Community Moderator Election ResultsCan't increase partition size with GParted?GParted doesn't recognize the unallocated space after my current partitionWhat is the best way to add unallocated space located before to Ubuntu 12.04 partition with GParted live?I can't figure out how to extend my Arch home partition into free spaceGparted Linux Mint 18.1 issueTrying to extend but swap partition is showing as Unknown in Gparted, shows proper from fdiskRearrange partitions in gparted to extend a partitionUnable to extend partition even though unallocated space is next to it using GPartedAllocate free space to root partitiongparted: how to merge unallocated space with a partition

Image
Make it rain characters Keeping a retro style to sci-fi spaceships? How to split my screen on my Macbook Air? How can I define good in a religion that claims no moral authority? does high air pressure throw off wheel balance? Scientific Reports - Significant Figures Relations between two reciprocal partial derivatives? How to delete random line from file using Unix command? How did passengers keep warm on sail ships? How are presidential pardons supposed to be used? Are my PIs rude or am I just being too sensitive? He got a vote 80% that of Emmanuel Macron’s Change bounding box of math glyphs in LuaTeX Match Roman Numerals Was credit for the black hole image misattributed? How to pronounce 1ターン? how can a perfect fourth interval be considered either consonant or dissonant? Working through the single responsibility principle (SRP) in Python when calls are expensive High Q peak in frequency response means what in time domain? ...
Read more

Marilyn Monroe Ny fiainany manokana | Jereo koa | Meny fitetezanafanitarana azy.

Image
OlonaBiôgrafiaVangovangoMpilalaoMpilalao amin'ny horonantsaryMpamoaka horonantsaryTeraka tamin'ny taona 1926Maty tamin'ny taona 1962 EtazoniaLos Angeles fanitarana azy . Marilyn Monroe Avy amin'i Wikipedia Sauter à la navigation Sauter à la recherche Marilyn Monroe Ankapobeny Anarana Marilyn Monroe Teraka 1 Jiona 1926 Maty 5 Aogositra 1962 Fiaviana sy ny andraikitra Firenena Etazonia Asa : mpilalao mpilalao amin'ny horonantsary mpamoaka horonantsary Fiainana manokana Marilyn Monroe dia mpilalao, mpilalao amin'ny horonantsary, mpamoaka horonantsary mizaka ny zom-pirenen'i Etazonia teraka ny 1 Jiona 1926 tao Los Angeles ary maty ny 5 Aogositra 1962 Ny fiainany manokana | Ny vadiny dia James Dougherty, Joe DiMaggio, Arthur Miller. Jereo koa | Biôgrafia Rohy ivelany | Ao amin'i Freebase: [1] Mbola ambangovangony ity lahatsoratra ity ary tokony hofenoina . Azonao atao ny mandray anjara eto amin'ny Wikipedia amin...
Read more