Neil,
For what it's worth, I used the 'local=/FQDN/' format (no IP addr specified)
for around 800k entries. This makes dnsmasq grow about 100MiB when running. It
still starts up fast, and there is a very small but measurable increase in
resolution time. But it works very well (for me) to block
On Mon, 12 Sep 2022 08:26:14 +0200
Geert Stappers via Dnsmasq-discuss
wrote:
> Hello Johnny,
> ( Cc: dnsmasq-discuss@lists.thekelleys.org.uk )
>
>
> On Mon, Sep 12, 2022 at 11:51:22AM +0800, Johnny S. Lee via Dnsmasq-discuss
> wrote:
> > The contents of file VERSION from the tar.gz files of t
On Wed, 10 May 2023 21:12:40 -0500
"B@us" wrote:
> I realize this breaks many standards. But the reality for most small
> installations is we have no real business visiting sites with non-ASCII
> domain names. I'm thinking of protecting against the Greek "α" which looks a
> lot like the letter "a
Other thoughts (maybe dumb, but could be easily overlooked):
- An easy-ish thing to check in the source: is the counter wide enough
(16-, 32- or 64-bits)?
- What happens when max is set to 4, 16, etc.?
o Is there a maximum before the limit fails to limit?
o Does it always assign max
I did some math a while back. IPv6 will 'never' run out of addresses? Hah!
It'll happen sooner than anyone thinks.
- Assume 2^31 IPv6 LANs attached to the internet around the world.
- Compute 2^31 * 2^64 = 2^95 addresses assigned
- Assume 16 devices connected on each LAN: 2^31 * 2^4 = 2^35
On Sat, 23 Sep 2023 14:52:30 +0200
Matthias May via Dnsmasq-discuss
wrote:
> On 23/09/2023 02:41, Wink Saville wrote:
> > On Fri, Sep 22, 2023 at 4:32 PM Matthias May via Dnsmasq-discuss
> > wrote:
> >>
> >> On 22/09/2023 18:27, Wink Saville wrote:
> >>> On Fri, Sep 22, 2023, 06:34 Luigi Ba
Could dnsmasq be twerked to pay attention to mDNS?
N
On Thu, 4 Apr 2024 16:29:54 +0200
Petr Menšík wrote:
> I thought about it very similar way. Yes, SLAAC clients even on trusted
> network have absolutely no good way to make their own name registered
> and recognized similar way as DHCP cli
On Sun, 18 Aug 2024 23:25:02 -0500
Corey Minyard wrote:
> ...
> I have dnsmasq mostly working, but I'm having one big problem. It seems
> that requests received from UDP are only forwarded to UDP, they cannot
> be forwarded to TCP. I'm running DNS over TLS on the server, so I have
> to be able
FWIW, I use (on a 32-bit i686 appliance) a 33MiB ads/pron/warez blocklist of
1.2M domains in the form "local=/FQDN/" (that is, the domains do not exist at
all for me; I'm OK with seeing whitespace). The virtual size (from 'ps aux') of
the running dnsmasq is 175MiB. Resolution time is a hair slow
On Wed, 26 Mar 2025 18:37:00 +
ABC DEF wrote:
> Hello,
>
> There's a new problem related to this issue.
>
> In dnsmasq v2.92test1, we have a proper date (so we have already working
> connection), but dnsmasq still sigsegv after first DHCPREQUEST...
>
> Logs:
> Mar 26 16:04:37 router daemo
On Mon, 31 Mar 2025 15:00:33 +0200
Paul D wrote:
> On 2025-03-29 22:44, Simon Kelley wrote:
> > Applied, with the exception of the boxen -> boxes.
> >
> > I'm old enough to remember when "boxen" was suitable slang replacement for
> > "boxes" c.f. ox and oxen. So I kept it in for old times' sake
NEEDS MORE THOUGHT!
On my firewall, I use the Univ. of Toulouse categorization lists to get lots of
maleficient and other undesired domain names (e.g., ads, pron, warez, ddos,
cryptojacking stalkerware, et alia; around 1.2M right now. I define them as
local; dnsmasq responds right quickly i
Sorry! Please disregard! I hit the wrong button. As the first line says, it
needs a lot more thought about what I want it to do (perhaps fetch all
addresses for a name--unless miscreants rarely have FQDNS that resolve to more
than one address, remove old addresses from IPset sets, and use 'unwan
On Wed, 23 Jul 2025 09:41:24 +
moist...@riseup.net wrote:
> > Problem
> When you use adblock dns as upstream with a combination with dnsmasq
> like below, and when the upstream return 0.0.0.0 as an answer, dnsmasq
> block it automatically if the user have "stop-dns-rebind" in the config.
>
14 matches
Mail list logo
