Topic: Bypass ISP DNS hijacking with DNSMasq

The content of this topic has been archived on 1 Apr 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.

Page 1 of 1

Post #1

warheat1990

22 Apr 2016, 14:46

So my ISP is blocking some site left and right, changing the DNS manually is not working due to Transparent DNS Proxy. The workaround is possible by installing DNSCrypt in my computer, however not every PC support DNSCrypt.

I was thinking to fix this problem on router level so every device under the router would be able to access every site without additional program like DNSCrypt.

I can do this on DD-WRT with :

I already read this page but still confused https://wiki.openwrt.org/doc/howto/dhcp.dnsmasq.

Can someone guide me for equivalent settings on OpenWRT?

(Last edited by warheat1990 on 22 Apr 2016, 14:50)

Post #2

Max Hopper

22 Apr 2016, 14:51

warheat1990 wrote:

Can someone guide me for equivalent settings on OpenWRT?

LMGTFY

Post #3

warheat1990

22 Apr 2016, 15:04

Max Hopper wrote:

warheat1990 wrote:
Can someone guide me for equivalent settings on OpenWRT?
LMGTFY

I don't mean to be rude but I wouldn't ask if I haven't read that page already.

Post #4

Max Hopper

22 Apr 2016, 15:45

The dd-wrt 'Additional DNSMasq Options' map directly to ones in the UCI section (reference the link).

Wherein lies the problem?

Post #5

warheat1990

23 Apr 2016, 01:53

Max Hopper wrote:

The dd-wrt 'Additional DNSMasq Options' map directly to ones in the UCI section (reference the link).
Wherein lies the problem?

All good, I add these settings on /etc/config/dhcp

option noresolv '1'
option strictorder '1'
list server '208.67.222.222#443'
list server '208.67.222.220#443'

Now every devices under the router is not affected by DNS hijacking anymore. Thanks!

(Last edited by warheat1990 on 23 Apr 2016, 02:21)

Post #6

Max Hopper

23 Apr 2016, 07:59

The discussion might have continued from here.

Page 1 of 1