Closed jsha closed 5 years ago
Ping @Rangak, could you review this fix?
The firewall constraints are only on the openwireless.org guest network. However the dns problem with mozilla shows up on the private network as well. That is puzzling. CeroWRT did not need opening traffic from source port 53 in its /etc/config/firewall so I am not sure why it is needed. Would prefer to get better handle, narrow down the problem and put in a minimal fix. Will leave this PR pending for now.
Ping on this @Rangak?
Will look into it today.
Per comment from Dave Taht this problem may have to do with DNSSEC. So this PR needs to be revisited and root cause identified.
This appeared to solve my problem of not being able to resolve mozilla.org. It still doesn't answer the question of why the response to the UDP query gets a 'truncated' flag, but it does allow TCP fallback to work.
Fixes #225.