wanderingidea: Thanks for the details, I'll have a look at it.
In the mean time, can you activate the DNS logging option in the DNS forwarders section and provide some log outputs of both working and non working resolution?
Pierre,
A test confirms there is no relation between adding an alias in the Firewall section and adding the same alias in a 'DNS forwarder override host' in the 'DNS forwarder' section.
Just adding an alias to a 'DNS forwarder override host' is sufficient for my client pc not to resolve anymore (/etc/resolv.conf on my pc still points to the firewall).
However resolving at the firewall itself is still possible as I checked via Diagnostics - Ping.
When I remove the alias from the 'DNS forwarder override host' I can resolve at my client pc again.
Resolving at the firewall itself via Diagnostics - Ping is still possible.
The logging, working situation, non-working situation and working again (notice dnsmasq exitting):
1. without alias, trying to resolve, working:
Jun 16 17:11:10 dnsmasq[811]: query[A] www.nu.nl from 192.168.1.2
Jun 16 17:11:10 dnsmasq[811]: forwarded www.nu.nl to 212.54.40.25
Jun 16 17:11:10 dnsmasq[811]: forwarded www.nu.nl to 212.54.44.54
Jun 16 17:11:10 dnsmasq[811]: forwarded www.nu.nl to 8.8.8.8
Jun 16 17:11:10 dnsmasq[811]: query[AAAA] www.nu.nl from 192.168.1.2
Jun 16 17:11:10 dnsmasq[811]: forwarded www.nu.nl to 212.54.44.54
Jun 16 17:11:10 dnsmasq[811]: reply www-nu-nl.gl.sanomaservices.nl is 62.69.174.78
Jun 16 17:11:10 dnsmasq[811]: reply www-nu-nl.gl.sanomaservices.nl is 62.69.166.15
Jun 16 17:11:10 dnsmasq[811]: reply www-nu-nl.gl.sanomaservices.nl is 62.69.166.18
Jun 16 17:11:10 dnsmasq[811]: reply www-nu-nl.gl.sanomaservices.nl is 62.69.174.75
Jun 16 17:11:10 dnsmasq[811]: reply www-nu-nl.gl.sanomaservices.nl is NODATA-IPv6
Jun 16 17:11:11 dnsmasq[811]: query[A] www.nu.nl from 192.168.1.2
Jun 16 17:11:11 dnsmasq[811]: cached www.nu.nl is <CNAME>
Jun 16 17:11:11 dnsmasq[811]: cached www-nu-nl.gl.sanomaservices.nl is 62.69.174.75
Jun 16 17:11:11 dnsmasq[811]: cached www-nu-nl.gl.sanomaservices.nl is 62.69.166.18
Jun 16 17:11:11 dnsmasq[811]: cached www-nu-nl.gl.sanomaservices.nl is 62.69.166.15
Jun 16 17:11:11 dnsmasq[811]: cached www-nu-nl.gl.sanomaservices.nl is 62.69.174.78
Jun 16 17:11:11 dnsmasq[811]: query[AAAA] www-nu-nl.gl.sanomaservices.nl from 192.168.1.2
Jun 16 17:11:11 dnsmasq[811]: cached www-nu-nl.gl.sanomaservices.nl is NODATA-IPv6
Jun 16 17:11:11 dnsmasq[811]: query[MX] www-nu-nl.gl.sanomaservices.nl from 192.168.1.2
Jun 16 17:11:11 dnsmasq[811]: forwarded www-nu-nl.gl.sanomaservices.nl to 212.54.44.54
2. after adding alias, trying to resolve, not working:
Jun 16 17:13:02 dnsmasq[957]: exiting on receipt of SIGTERM
Jun 16 17:13:03 dnsmasq[1024]: started, version 2.66 cachesize 150
Jun 16 17:13:03 dnsmasq[1024]: compile time options: IPv6 GNU-getopt ISC no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua no-TFTP no-conntrack no-ipset no-auth
Jun 16 17:13:03 dnsmasq[1024]: reading /etc/resolv.conf
Jun 16 17:13:03 dnsmasq[1024]: using nameserver 8.8.8.8#53
Jun 16 17:13:03 dnsmasq[1024]: using nameserver 212.54.44.54#53
Jun 16 17:13:03 dnsmasq[1024]: using nameserver 212.54.40.25#53
Jun 16 17:13:05 dhcpd: Internet Systems Consortium DHCP Server 4.1-ESV-R7
Jun 16 17:13:05 dhcpd: Copyright 2004-2012 Internet Systems Consortium.
Jun 16 17:13:05 dhcpd: All rights reserved.
Jun 16 17:13:05 dhcpd: For info, please visit https://www.isc.org/software/dhcp/
Jun 16 17:13:11 kernel: pid 1024 (dnsmasq), uid 65534: exited on signal 11
notice:
Jun 16 17:13:11 kernel: pid 1024 (dnsmasq), uid 65534: exited on signal 113. removed alias, trying to resolve, working again:
Jun 16 17:13:02 dnsmasq[957]: exiting on receipt of SIGTERM
Jun 16 17:13:03 dnsmasq[1024]: started, version 2.66 cachesize 150
Jun 16 17:13:03 dnsmasq[1024]: compile time options: IPv6 GNU-getopt ISC no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua no-TFTP no-conntrack no-ipset no-auth
Jun 16 17:13:03 dnsmasq[1024]: reading /etc/resolv.conf
Jun 16 17:13:03 dnsmasq[1024]: using nameserver 8.8.8.8#53
Jun 16 17:13:03 dnsmasq[1024]: using nameserver 212.54.44.54#53
Jun 16 17:13:03 dnsmasq[1024]: using nameserver 212.54.40.25#53
Jun 16 17:13:05 dhcpd: Internet Systems Consortium DHCP Server 4.1-ESV-R7
Jun 16 17:13:05 dhcpd: Copyright 2004-2012 Internet Systems Consortium.
Jun 16 17:13:05 dhcpd: All rights reserved.
Jun 16 17:13:05 dhcpd: For info, please visit https://www.isc.org/software/dhcp/
Jun 16 17:13:11 kernel: pid 1024 (dnsmasq), uid 65534: exited on signal 11
Jun 16 17:14:07 dnsmasq[1082]: started, version 2.66 cachesize 150
Jun 16 17:14:07 dnsmasq[1082]: compile time options: IPv6 GNU-getopt ISC no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua no-TFTP no-conntrack no-ipset no-auth
Jun 16 17:14:07 dnsmasq[1082]: reading /etc/resolv.conf
Jun 16 17:14:07 dnsmasq[1082]: using nameserver 8.8.8.8#53
Jun 16 17:14:07 dnsmasq[1082]: using nameserver 212.54.44.54#53
Jun 16 17:14:07 dnsmasq[1082]: using nameserver 212.54.40.25#53
Jun 16 17:14:07 dnsmasq[1082]: read /etc/hosts - 11 addresses
Jun 16 17:14:08 dhcpd: Internet Systems Consortium DHCP Server 4.1-ESV-R7
Jun 16 17:14:08 dhcpd: Copyright 2004-2012 Internet Systems Consortium.
Jun 16 17:14:08 dhcpd: All rights reserved.
Jun 16 17:14:08 dhcpd: For info, please visit https://www.isc.org/software/dhcp/
Jun 16 17:14:10 dnsmasq[1082]: query[A] www.nu.nl from 192.168.1.2
Jun 16 17:14:10 dnsmasq[1082]: forwarded www.nu.nl to 212.54.40.25
Jun 16 17:14:10 dnsmasq[1082]: forwarded www.nu.nl to 212.54.44.54
Jun 16 17:14:10 dnsmasq[1082]: forwarded www.nu.nl to 8.8.8.8
Jun 16 17:14:10 dnsmasq[1082]: query[AAAA] www.nu.nl from 192.168.1.2
Jun 16 17:14:10 dnsmasq[1082]: forwarded www.nu.nl to 212.54.40.25
Jun 16 17:14:10 dnsmasq[1082]: forwarded www.nu.nl to 212.54.44.54
Jun 16 17:14:10 dnsmasq[1082]: forwarded www.nu.nl to 8.8.8.8
Jun 16 17:14:10 dnsmasq[1082]: reply www-nu-nl.gl.sanomaservices.nl is 62.69.166.15
Jun 16 17:14:10 dnsmasq[1082]: reply www-nu-nl.gl.sanomaservices.nl is 62.69.166.18
Jun 16 17:14:10 dnsmasq[1082]: reply www-nu-nl.gl.sanomaservices.nl is 62.69.174.75
Jun 16 17:14:10 dnsmasq[1082]: reply www-nu-nl.gl.sanomaservices.nl is 62.69.174.78
Jun 16 17:14:10 dnsmasq[1082]: reply www-nu-nl.gl.sanomaservices.nl is NODATA-IPv6