Firmware openwrt-ar750s-3.201-0402.tar, possible still same DNS leak or again

The same bug on a verry old and a actual firmware. In boot cases, the client devices always use the upstream devices DNS server and not the on router configured one.

I hope the hint can help how to check, find and fix this bug on actual firmware versions again.

Good afternoon, I can confirm that firmware version 3.201 does leak DNS, and I “solved” the problem by reverting to version 3.105. However I still seem to have problems casting (BBC) to chromecast. after 20 mins or so the screen says: Ready to cast and I have to stop casting and restart.

1 Like

THX for checking the DNS leak. And THX for report the result.

Hi, thnx for the thnx.
I retract my comment about losing the connection to the BBC stream. I have been testing now for several hours BBC and Channel5. and no problems at all.

Any news about the research and fixing the DNS leak of 3.201-0402 firmware ?

I can replicate the problem and developers are fixing on this.

Thats sounds great.

By the way. It can be it make sense to fix the menue (if I remember right) which can only set to “use the DNS of your ISP” or so on, to disable if used coudflare or whatever user defined non ISP DNS…

Now I added this to the bug list:

Thanks for your hard work.

But the logic is to use user defined DNS other than the ISP DNS.

There should NoT be an option to use ISP defined DNS rather than user defined DNS

The menu item for using the ISP DNS should be deselectable when specifying a different DNS than the ISP DNS …

Yes, the ISP DNS must be avoided but, for example under ASUSWRT Merlin, I can chose between VPN provider DNS or DoT. The choice would even be better to be able to have VPN DNS for VPN clients and DoT DNS for those excluded from the VPN. You cannot assume only one logic here. ASUSWRT Merlin also gives a large choice of DoT servers.
I think that GL has made a few things too simple giving almost no choice to the user.
These are a few options that I would really need when I’m using the MV1000. And these are from the older GUI version from john9527


1 Like

Wow. The possibility to disable to disable weak chipper suites looks interesting. Is the asus wrt full open source or does it have closed source parts like DDWRT and the gl firmware ?

I was looking now for Asus router. And found some models in dsl router size, a didnt find on travel router size on this time.

Unfortunately, it’s not. This is one of the reason why I use an older version based fork from John because the Merlin’s fork is less and less open source (because of asus choices). I believe Wifi is never OSS while the rest is. The other problem is that my RT-AC68U uses a very old 2.6 kernel (so no wireguard). I don’t think asus has produced a small size router.

It can be they are one or two full open source WiFi vendors. If I remenmber right, I read like this on mono project or so on. It can be The WLEW200NX are one of this cards.

Remark:

One more which have possible the same possible DNS leak:

They are any plan and time frame to fix the DNS leak on 3.201 firmware ?

As I understand it, it’s possible only if you want a/b/g/n
There is no free open source driver for ac

What are the benefit for user of a VPN with a DNS leak ?

What are the benefit of dont useing existing wifi hardware which have open source driver ?

What are the benefit for user of a router firmware which have a closed source part ?

What are the benefit of a DNS leaky router based solution against only installing a VPN software on the PC which need a VPN ?

What are the benefit for user of a VPN with a DNS leak ?

I can’t tell because I don’t see one DNS leak, either on the client sent to the VPN or the one excluded. Both use CloudFlare DoT through the VPN (which isn’t optimal but cannot be called leak).

What are the benefit of dont useing existing wifi hardware which have open source driver ?

Having better speed with WIfi ac (because there is no open source wifi ac or ax).

What are the benefit for user of a router firmware which have a closed source part ?

see above : faster wifi and functions not available as open source like trend micro on ASUSWRT.

What are the benefit of a DNS leaky router based solution against only installing a VPN software on the PC which need a VPN ?

Not all devices behind a router (and I don’t see it leaking in the case of my MV1000) are PCs. Once properly configured in the router, I can chose which device goes in the VPN or not without having to install anything on each and every device (when ever a VPN can possibly be installed, try that in a cloud camera for example).

Source: Firmware openwrt-ar750s-3.201-0402.tar, possible still same DNS leak or again - #32 by Willist

“Based on openwrt 19.07.7

Important bugfix:

3. Fixed DNS leakage BUG when using CloudFlare after connecting to OpenVPN”
Source: https://dl.gl-inet.com/firmware/snapshots/3.203_beta4/ar750s/ReleaseNote.txt

Its great to see the fixed version from open wrt will be used now. So it will be possible in future to use one newer non DNS leak version than the last one released without DNS leak 3.105

Pls. dont forget to delete the known DNS leaky RELEASED Firmware 3.1x and or 3.2x …

I checked this week the https://dl.gl-inet.com/firmware/snapshots/3.203_beta4/ar750s/
Its still the same DNS leak. So the last one known not DNS leaky is still the 3.105 (tested on AR-750S)

Any news about fixing the DNS leak ?