Stubby-Installer-Asuswrt-Merlin

[kvic]

I just tested recent dnscrypt-proxy v18 that states to support tls1.3
I did a simple dig test on one of my country local site domain with cloudflare.
On dot (stubby), the ping is 48-70 ms,
on doh (dnscrypt-proxy), the ping is 10-15ms.

I tried a few round without cache by restarting dnsmasq and the result is consistent. So not sure if dnscrypt-proxy v17 was the same. Anyone tested it? Is tls 1.3 working the magic?

Interesting data point..

Was trying to look up some explanation in the last 15 minutes or so. Came across this PAPER. Only have time to go through the abstract.

When properly done DoT/DoH (not referred with the exact term in the paper), they should be 9-22% slower (including resolving time).

Interestingly, "security researhers" would tell people to believe in a bunch of benefits. Sorry being a bit sarcastic. The one benefit listed in the abstract that stands out for end-users is again eavesdropping..to me that's the last mile. lol

 

[rgnldo]

I only see three broken icons..

I did not understand

 

[underdose]

I did not understand

Your images does not show up, 3 broken image icons appear instead.

 

[rgnldo]

Your images does not show up

Fixed image links

 

[skeal]

Hello all! Note to @Xentrk
I have found a fix to the problem with pool.ntp.org not being resolved before stubby starts. You can use a IP from the NTP page or put this in your dnsmasq.conf.add file:

server=/pool.ntp.org/1.1.1.1

If you use the setting above remember to change your time value on the administration page back to pool.ntp.org as it was by default. Tested several reboots and works like a charm.

 

[bbunge]

Hello all! Note to @Xentrk
I have found a fix to the problem with pool.ntp.org not being resolved before stubby starts. You can use a IP from the NTP page or put this in your dnsmasq.conf.add file:

server=/pool.ntp.org/1.1.1.1

If you use the setting above remember to change your time value on the administration page back to pool.ntp.org as it was by default. Tested several reboots and works like a charm.

This works! F.Y.I. you can use the IP address of the DNS server of your choice. I used 9.9.9.9 in my config.add.

Sent from my SM-T380 using Tapatalk

 

[Odkrys]

Patched getdns for RT-AC86U

https://drive.google.com/open?id=13twATG38ZLUz-dJDmSqW0afK_YngtqPf

 

[Odkrys]

Umm.. Yeah I feel DoT is faster than DoH of dnscrypt-proxy2 :O!

 

[RMerlin]

Patched getdns for RT-AC86U

https://drive.google.com/open?id=13twATG38ZLUz-dJDmSqW0afK_YngtqPf

Were the patches sent upstream for inclusion?

 

[Jack Yaz]

Were the patches sent upstream for inclusion?

Yup

https://github.com/getdnsapi/stubby/issues/140#issuecomment-442862122

 

[RMerlin]

Yup

https://github.com/getdnsapi/stubby/issues/140#issuecomment-442862122

Awesome, thanks.

I was asking for another dev who had also fixed it on his own end, and wanted to see if he had missed anything in his own fix.

 

[Marin]

Just installed this in my AC86U and everything came to a screeching halt. My VPN and internet will not work and the NTP server will not synchronize my time zone. Until I figure everything out and do some more reading about stubby, could anybody provide me with the uninstall command for Stubby via SSH?

Thank you!


Sent from my iPhone using Tapatalk

 

[skeal]

Just installed this in my AC86U and everything came to a screeching halt. My VPN and internet will not work and the NTP server will not synchronize my time zone. Until I figure everything out and do some more reading about stubby, could anybody provide me with the uninstall command for Stubby via SSH?

Thank you!


Sent from my iPhone using Tapatalk

If you had read the first post you would have seen the notation to it not working on the AC86U. The command to uninstall is:

/jffs/scripts/stubby install

It will give you option to uninstall.

 

[bbunge]

Just installed this in my AC86U and everything came to a screeching halt. My VPN and internet will not work and the NTP server will not synchronize my time zone. Until I figure everything out and do some more reading about stubby, could anybody provide me with the uninstall command for Stubby via SSH?

Thank you!


Sent from my iPhone using Tapatalk

There is a patched getdns that should work on the AC86U. See prior posts. There is also a fix for the time server or you can use a time server IP address.

Sent from my SM-T380 using Tapatalk

 

[Marin]

If you had read the first post you would have seen the notation to it not working on the AC86U. The command to uninstall is:

/jffs/scripts/stubby install

It will give you option to uninstall.

Thank you @skeal! But most recent posts stated that it is now working with AC86U...



Sent from my iPhone using Tapatalk

 

[Marin]

...and the command is not working


Sent from my iPhone using Tapatalk

 

[Marin]

Used this instead:

/opt/etc/init.d/S61stubby kill

Will see if this does the trick [emoji849]


Sent from my iPhone using Tapatalk

 

[Marin]

There is a patched getdns that should work on the AC86U. See prior posts. There is also a fix for the time server or you can use a time server IP address.

Sent from my SM-T380 using Tapatalk

I tried entering the server info in the NTP field, rebooted but that didn’t work either. Something tells me that this may be due to my VPN settings. I read somewhere that I may have to change the “Accept DNS config” to Disable bit then I am thinking wouldn’t this interfere with Diversion which requires this setting to be “Strict”?


Sent from my iPhone using Tapatalk

 

[bbunge]

I do not use diversion or VPN. Run the same string to install or remove stubby.

Sent from my SM-T380 using Tapatalk

 

[Marin]

Which string are you referring to?



Sent from my iPhone using Tapatalk