search

ReliefLabs / EasyTomato

Easy Tomato is a modified version of TomatoUSB, which is in turn a modified version of Jonathan Zarate’s excellent open source Tomato firmware. Relief Labs has worked to make this powerful firmware accessible to less technical users through easy to use documentation and a simplified interface
http://www.easytomato.org/
Other
63 stars 19 forks source link

DNS Blocking Not Working #52

Closed wrdixon closed 11 years ago

wrdixon commented 11 years ago

DNS requests weren't making to the FORWARD chain, but were getting sucked out in the INPUT chain. On the advanced-dhcpdns.asp page we have Use internal DNS and Intercept DNS port (UDP 53) checked. These make it so that if someone selects their own DNS servers on their computer, we can intercept that and force them to go to OpenDNS or whatever. Well, so this also means that no longer is the DNS request a Forward, but its actually originating from the router, as the router is physically doing the lookup for the computer.

Basically we just need to put a line in the INPUT that catches port 53 request and sends them down to the rres00 chain.

EagleEye905 commented 11 years ago

Does this mean that EasyTomato overrides the DNS server that someone sets up on their own computer? And always send to OpenDNS if the router is configured that way?

Thanks!