[Fork] Asuswrt-Merlin 374.43 LTS releases (Archive)

[dlandiss]

double check again that there aren't a lot of other access points on your selected channel.

Or worse, on an ADJACENT channel.

 

[acale75]

Exactly what I was thinking.



Replace 123456 with your own ID.
/jffs/configs/dnsmasq.conf.add

# NextDNS
add-cpe-id=123456
# Uncomment the following lines to send devices MAC and local IPs
# and identify them in NextDNS Logs and Analytics sections.
add-mac
add-subnet=32,128

/jffs/scripts/stubby.postconf

#!/bin/sh

CONFIG=$1
source /usr/sbin/helper.sh

pc_replace "dns1.nextdns.io" "123456.dns1.nextdns.io" $CONFIG
pc_replace "dns2.nextdns.io" "123456.dns2.nextdns.io" $CONFIG

EDIT: Updated stubby.postconf because of change in posts #10342/10344.

I think this takes a bit too much of my knowledge.
If i type in Putty '/jffs/configs/dnsmasq.conf.add' then I get the message 'not found'.
I think it would be better for me to buy a cheap router first and do some experiments on it before I make my own router unusable.
Thanks anyway

 

[john9527]

Hmmm. Since the other helpful members have shown how to configure with your personal account for NextDNS with stubby/dnsmasq, that's something that may be doable. I'll take a look.

 

[ColinTaylor]

Hmmm. Since the other helpful members have showed how to configure with your personal account for NextDNS with stubby/dnsmasq, that's something that may be doable. I'll take a look.

It's worth people bearing in mind that NextDNS is not a free service once the beta period ends. 300,000 queries a month is approximately 6.8 queries a minute.

 

[john9527]

NextDNS looks like it has some growing pains.....some stats from dnsmasq.....

Cloudflare/Quad9
Mar 31 12:15:00 dnsmasq[22780]: server 127.0.0.1#5453: queries sent 2286, retried or failed 22
Mar 31 12:15:00 dnsmasq[22780]: server ::1#5453: queries sent 2369, retried or failed 47

NextDNS
Mar 31 08:15:00 dnsmasq[10854]: server 127.0.0.1#5453: queries sent 2458, retried or failed 340
Mar 31 08:15:00 dnsmasq[10854]: server ::1#5453: queries sent 1570, retried or failed 286

 

[acale75]

Yes, I also saw that in my logs when I used nextdns

 

[Ryu Connor]

Am I correct in interpreting that a Kr00k fix for the N66U is going to require a new closed source binary driver release from Asus?

 

[RMerlin]

Am I correct in interpreting that a Kr00k fix for the N66U is going to require a new closed source binary driver release from Asus?

Yes. It requires at least an updated wireless driver, and an updated nas (the authentication daemon).

 

[ColinTaylor]

NextDNS looks like it has some growing pains.....some stats from dnsmasq.....

Cloudflare/Quad9
Mar 31 12:15:00 dnsmasq[22780]: server 127.0.0.1#5453: queries sent 2286, retried or failed 22
Mar 31 12:15:00 dnsmasq[22780]: server ::1#5453: queries sent 2369, retried or failed 47

NextDNS
Mar 31 08:15:00 dnsmasq[10854]: server 127.0.0.1#5453: queries sent 2458, retried or failed 340
Mar 31 08:15:00 dnsmasq[10854]: server ::1#5453: queries sent 1570, retried or failed 286

Yeah, I was getting a lot of the following type of message today. I've now gone back to Cloudflare which has always been solid for me.

[13:55:53.165696] STUBBY: 45.90.28.0                               : Upstream   : !Backing off TLS on this upstream    - Will retry again in 2s at Wed Apr  1 13:55:55 2020
[13:55:53.481212] STUBBY: 45.90.30.0                               : Conn closed: TLS - *Failure*
[13:55:53.481397] STUBBY: 45.90.28.0                               : Upstream   : No valid upstreams for TLS... promoting this backed-off upstream for re-try...
[13:55:53.481686] STUBBY: 45.90.28.0                               : Conn opened: TLS - Strict Profile
[13:55:53.481803] STUBBY:    *FAILURE* no valid transports or upstreams available!
[13:55:53.482233] STUBBY: 45.90.30.0                               : Conn closed: TLS - *Failure*
[13:55:53.482356] STUBBY:    *FAILURE* no valid transports or upstreams available!

 

[RMerlin]

If you are having random resolution issues with NextDNS I suggest contacting @Olivier Poitrey about it. I assume they use Anycast, so it could indicate an issue with some of their nodes.

 

[dave14305]

Yeah, I was getting a lot of the following type of message today. I've now gone back to Cloudflare which has always been solid for me.

[13:55:53.165696] STUBBY: 45.90.28.0                               : Upstream   : !Backing off TLS on this upstream    - Will retry again in 2s at Wed Apr  1 13:55:55 2020
[13:55:53.481212] STUBBY: 45.90.30.0                               : Conn closed: TLS - *Failure*
[13:55:53.481397] STUBBY: 45.90.28.0                               : Upstream   : No valid upstreams for TLS... promoting this backed-off upstream for re-try...
[13:55:53.481686] STUBBY: 45.90.28.0                               : Conn opened: TLS - Strict Profile
[13:55:53.481803] STUBBY:    *FAILURE* no valid transports or upstreams available!
[13:55:53.482233] STUBBY: 45.90.30.0                               : Conn closed: TLS - *Failure*
[13:55:53.482356] STUBBY:    *FAILURE* no valid transports or upstreams available!

They also recommend that roundrobin be disabled, which is unusual, but I assume that means they don't have the same capacity on their secondary?

 

[SomeWhereOverTheRainBow]

They also recommend that roundrobin be disabled, which is unusual, but I assume that means they don't have the same capacity on their secondary?

yea their servers will have a billion almost instantaneous connection shuts if you use round robin.

 

[pankajvg]

Part of this fork is that the wireless drivers are 'stable'.....last change was for the Krack fix in 2017,

It's likely that wireless contention has increased with everyone at home now. If you haven't moved the router, or added new electronics in your home that can be causing noise, double check again that there aren't a lot of other access points on your selected channel.

Welcome back John, Really happy to have you back .
Well i have tried everything and seems it doesnt work , i will try today with the new build & keep you posted

 

[mindfrost82]

I think this takes a bit too much of my knowledge.
If i type in Putty '/jffs/configs/dnsmasq.conf.add' then I get the message 'not found'.
I think it would be better for me to buy a cheap router first and do some experiments on it before I make my own router unusable.
Thanks anyway

I also don't have this in my jffs partition.

 

[ColinTaylor]

I also don't have this in my jffs partition.

These are custom configuration files that you have to create yourself.

https://github.com/RMerl/asuswrt-merlin.ng/wiki/Custom-config-files

 

[acale75]

These are custom configuration files that you have to create yourself.

https://github.com/RMerl/asuswrt-merlin.ng/wiki/Custom-config-files

Maybe I don't quite get it . the website says "To have a config file appended to the one created by the firmware, simply add" .add "
Apparently I already have /jffs/configs/dnsmasq.conf and with the add command I can add lines to it. The problem is, I get the message not found.

 

[dave14305]

Maybe I don't quite get it . the website says "To have a config file appended to the one created by the firmware, simply add" .add "
Apparently I already have /jffs/configs/dnsmasq.conf and with the add command I can add lines to it. The problem is, I get the message not found.

If you really have a file /jffs/configs/dnsmasq.conf it means that file is always overriding the firmware-generated dnsmasq.conf file in the etc directory.

I offer the following 3 commands to run in the ssh window (first change 123456 to your own nextdns config-id):

rm /jffs/configs/dnsmasq.conf
printf "add-cpe-id=123456\nadd-mac\nadd-subnet=32,128\n" > /jffs/configs/dnsmasq.conf.add
service restart_dnsmasq

If anything goes wrong:

rm /jffs/configs/dnsmasq.conf.add
service restart_dnsmasq

 

[acale75]

Oooh, i see. Thanks Dave

 

[ColinTaylor]

Maybe I don't quite get it . the website says "To have a config file appended to the one created by the firmware, simply add" .add "

Yes, I think you're not understanding how this works. These custom scripts/configs are used to change or replace files created by the firmware. In this case the file created by the firmware is /etc/dnsmasq.conf.

Apparently I already have /jffs/configs/dnsmasq.conf and with the add command I can add lines to it. The problem is, I get the message not found.

dnsmasq.conf.add is not a command, it's a text file that needs to be created or edited. If you just type in this filename at the command prompt you will get a "not found" error (because it's not a command).

 

[acale75]

Yes, I think you're not understanding how this works. These custom scripts/configs are used to change or replace files created by the firmware. In this case the file created by the firmware is /etc/dnsmasq.conf.

dnsmasq.conf.add is not a command, it's a text file that needs to be created or edited. If you just type in this filename at the command prompt you will get a "not found" error (because it's not a command).

Thanks ColinTaylor for your explanation. Learned something again today