| 24 May 2021 |
|  Zhaofeng Li changed their display name from zhaofeng to Zhaofeng Li. | 03:47:03 |
|  hoverbear changed their profile picture. | 04:57:56 |
|  oopisthedevil joined the room. | 06:25:28 |
|  Patrick Georgi joined the room. | 07:30:47 |
|  jul1u5 removed their profile picture. | 20:05:16 |
|  Church set a profile picture. | 21:17:17 |
|  panacea joined the room. | 21:50:33 |
| 25 May 2021 |
|  rajivr joined the room. | 01:13:44 |
|  Aluísio Augusto Silva Gonçalves joined the room. | 06:36:39 |
 n0emis | Has someone here tried to package exabgp? | 13:31:25 |
 andi- | I haven't tried but last time I used it that was straightforward | 13:48:28 |
|  p10r joined the room. | 14:35:12 |
|  binaryoctopus joined the room. | 15:41:36 |
|  meet joined the room. | 16:06:14 |
|  alexey96 joined the room. | 17:28:04 |
| alexey96 | Hello. I am a new NixOS user and I seek help with Dnsmasq configuration. I have configured local network dns on a nixos machine to filter ads. It works but very slowly, top shows that dnsmasq service is taking 100% cpu. I believe this is because my resolve.conf has my router ip address, which itself has DNS address set to NixOS machine. I have a feeling that they are stuck in some kind of loop. I tried to tinker with configuration.nix to remove router address from resolve.conf, but I cant figure how to do it | 17:28:41 |
| andi- | alexey96: Can you post some configuration snippets? What is dnsmasq using as upstream resolver once it is through your filter lists? | 17:36:03 |
| alexey96 | andi-: 8.8.8.8 (google), 208.67.220.220 (opendns) | 17:38:01 |
| andi- | Might be worth checking if your lookups are indeed looping between your devices. Look into the logging output (turn it to debug/verbose) and/or use tcpdump to see what is happening there. | 17:39:05 |
| alexey96 | Redacted or Malformed Event | 17:39:25 |
| andi- | Maybe dnsmasq is just overloaded by the amount of filters you have? How many are there? Have you tried removing the fiters to see if that improves anything? | 17:39:30 |
| alexey96 | I am using configuration suggested here: https://github.com/NixOS/nixpkgs/issues/61617#issuecomment-623934193 | 17:41:01 |
| alexey96 | Same block-lists from pi-hole repository | 17:41:19 |
| alexey96 | except for listen address, i have added machine's static address to resolve inbound requests | 17:42:39 |
| alexey96 | and have opened TCP and UDP ports 53 | 17:43:08 |
| alexey96 | It is in loop indeed. Have just checked log file:
May 25 20:44:22 dnsmasq[27139]: forwarded router.asus.com.home to 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: query[A] router.asus.com.home from 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: forwarded router.asus.com.home to 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: query[A] router.asus.com.home from 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: forwarded router.asus.com.home to 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: query[A] router.asus.com.home from 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: forwarded router.asus.com.home to 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: query[A] router.asus.com.home from 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: forwarded router.asus.com.home to 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: query[A] router.asus.com.home from 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: forwarded router.asus.com.home to 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: query[A] router.asus.com.home from 192.168.1.1
May 25 20:44:22 dnsmasq[27139]: forwarded router.asus.com.home to 192.168.1.1
| 17:45:22 |
| alexey96 | I have a stock AsusWRT on my router and i have no way of disabling it broadcasting itself as secondary DNS for local domain | 17:47:34 |
| alexey96 | So the only option to prevent this looping is removing it from resolv.conf on the NixOS machine and i have trouble with this | 17:48:29 |
| alexey96 | * So the only option to prevent this looping is removing ip 192.168.1.1 from resolv.conf on the NixOS machine and i have trouble with this | 17:49:03 |
| alexey96 | Network and dnsmasq configs: # DNS server
services.dnsmasq.enable = true;
services.dnsmasq.extraConfig = ''
domain-needed
bogus-priv
no-resolv
server=208.67.220.220
server=8.8.8.8
listen-address=::1,127.0.0.1,192.168.1.100
bind-interfaces
cache-size=10000
log-queries
log-facility=/tmp/ad-block.log
local-ttl=300
conf-file=/etc/nixos/assets/hosts-blocklists/domains.txt
addn-hosts=/etc/nixos/assets/hosts-blocklists/hostnames.txt
# address=/nixos.home/192.168.1.100
'';
| 17:51:21 |
