Menu
What's new
By:
Filters Better Search

Trying to use Quad9 with new ASUS RT-AX88U Pro

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Tech9 said:
Interesting. Why is this even allowed?
Click to expand...
Why not?

I had a customer for which I delegated a sub-domain (lan.domain.com) which contained IP addresses of various VMs within the 10.x.x.x subnet. It made things easier to manage since that customer had over 100 VMs running in the datacenter at the time.

DNSBLs also generally work that way, by returning an IP address within the 127.0.0.x subnet to report whether a specific hostname is blacklisted or not.
 
This customer with >100VMs in a datacenter relies on an upstream DNS server because it was easier?
 
Tech9 said:
Interesting. Why is this even allowed?
Click to expand...
There's inherently nothing wrong with that. There's no reason to assume that the router's WAN DNS servers are public servers or what the user's network topology is. Just because the average home user uses something like Google DNS doesn't mean everybody does.
 
I understand, but we were talking about home router to public DNS like Quad9. This service is not intended for someone running a datacenter, I believe.
 
Tech9 said:
I understand, but we were talking about home router to public DNS like Quad9. This service is not intended for someone running a datacenter, I believe.
Click to expand...
I've seen Amazon use public DNS records that return private IP addresses for video services. VoIP services also do it sometimes. And of course services like Cloudflare and NextDNS do it when they're blocking certain domains (e.g. porn, malware, etc.). So given that this is perfectly legitimate practice it makes sense that dnsmasq has an option to choose whether of not to accept it.
 
Last edited:
What's the benefit of enabling it on a home router in this case? Sound like it does more harm than good.
 
Ah, okay... Wikipedia. Thank you.
 
No. What's your recommendation about this setting in this particular case - home router, Quad9? I believe it has to stay disabled given the fact it's not the only measure on a typical home network using typical home products. Not talking about business firewalls and servers.
 
Tech9 said:
No. What's your recommendation about this setting in this particular case - home router, Quad9? I believe it has to stay disabled given the fact it's not the only measure on a typical home network using typical home products. Not talking about business firewalls and servers.
Click to expand...
My understanding was that the OP's issue was that he couldn't use Quad9 at all.
 
Tech9 said:
This customer with >100VMs in a datacenter relies on an upstream DNS server because it was easier?
Click to expand...
It makes SSH management easier, yes. We had a naming scheme, so we used DNS for what it was intended to: rely on easy to remember names rather than memorizing 100+ IP addresses.
 
ColinTaylor said:
Not normally. Personally, I have it enabled. But if you use a DNS blocking service (like Cloudflare for Families) that returns bogus addresses for blocked domains you may see lots of false warnings in your router's system log.
Click to expand...

It makes sense what to say, because actually on some devices I have DNS from Cloudflare for Families defined by DNS Director (not for the main network) and several false warnings actually appear. So I deduce that's it.
 
Last edited:
You must log in or register to reply here.

Similar threads

elrengo
Moving from RT-AC3100 to RT-AX88U Pro
Replies
13
Views
887
ColinTaylor
C
F
Solved DNS Director AX88U Pro
Replies
8
Views
870
fotingo
F
David Cavalli
RT-AX88U Pro installation from RT-AC68U config files
Replies
12
Views
775
Tech9
Tech9
S
Merlin firmware and 2.4GHz band drops on AX88u and BE88u
Replies
4
Views
559
matthew_eli
matthew_eli
B
What to use as Aimesh node with AX88U Pro? RT-AX58U or RP-AX58.
Replies
1
Views
374
Tech9
Tech9
Similar threads
Thread starter Title Forum Replies Date
L Is someone trying to access my router? Asuswrt-Merlin 3
S Anyone else having issues trying to flash the newest merlin (stable or beta) to the GT-0AXE11000? Asuswrt-Merlin 4
Z Asus AX88u slow on 2.4ghz wifi on certain devices Asuswrt-Merlin 9
A Wireguard server on Asus AX58U Asuswrt-Merlin 2
PR3MIUM WireGuard removing OpenVPN on ASUS Routers ? Asuswrt-Merlin 2
A Asus 58U same ssl cert on Chrome iOS Asuswrt-Merlin 0
A Asus RT AX58U - security link Asuswrt-Merlin 0
A Duckdns on Asus merlin router Asuswrt-Merlin 1
P Accessing remotly Server While Using VPN on Asus Router with Merlin Firmware Asuswrt-Merlin 9
M 802.1q VLAN tagging menu missing for WAN interface (Asus RT-AX86U Pro) Asuswrt-Merlin 4

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Members online

Total: 817 (members: 34, guests: 783)
Top