SFT1200 VPN DNS issue on the v4.7.2

bpwl1 · March 12, 2025, 5:25pm

4.7.2.1 beta: Giving up again. 5GHz sometimes good for work (40Mbps), sometimes images do not load. 2.4GHz dramatic again as we have seen so many times before. (probably still needs wifi legacy mode).

hansome · March 19, 2025, 6:07am

I tested VPN DNS is working for 4.7.2-0308, can you check by command if dnsmasq bootstrap correctly?

root@GL-SFT1200:~# ps w|grep dnsmasq
14990 dnsmasq   2936 S    /usr/sbin/dnsmasq -C /var/etc/dnsmasq.conf.cfg01411c -k -x /var/run/dnsmasq/dnsmasq.cfg01411c.pid
14999 root      2864 S    /usr/sbin/dnsmasq -C /var/etc/dnsmasq.conf.cfg01411c -k -x /var/run/dnsmasq/dnsmasq.cfg01411c.pid
15031 root      2844 S    /usr/sbin/dnsmasq -C /etc/dnsmasq.conf.vpn -x /var/run/dnsmasq/dnsmasq.vpn.pid --server=209.244.0.3 --ser
15032 root      2840 S    /usr/sbin/dnsmasq -C /etc/dnsmasq.conf.vpn -x /var/run/dnsmasq/dnsmasq.vpn.pid --server=209.244.0.3 --ser
20854 root      1352 S    grep dnsmasq
root@GL-SFT1200:~# 
root@GL-SFT1200:~# 
root@GL-SFT1200:~# cat /etc/version.date 
2025-03-08 17:53:01
root@GL-SFT1200:~# 
root@GL-SFT1200:~# cat /etc/glversion 
4.7.2
root@GL-SFT1200:~#

hecatae · March 19, 2025, 10:52am

4.3.24:

root@GL-SFT1200:~# ps w|grep dnsmasq
 5171 dnsmasq   2936 S    /usr/sbin/dnsmasq -C /var/etc/dnsmasq.conf.cfg01411c -k -x /var/run/dnsmasq/dnsmasq.cfg01411c.pid
 5176 root      2864 S    /usr/sbin/dnsmasq -C /var/etc/dnsmasq.conf.cfg01411c -k -x /var/run/dnsmasq/dnsmasq.cfg01411c.pid
14712 root      1352 S    grep dnsmasq
root@GL-SFT1200:~# cat /etc/version.date
2025-01-15 21:27:24
root@GL-SFT1200:~# cat /etc/glversion
4.3.24

4.7.2 0308

root@GL-SFT1200:~# ps w|grep dnsmasq
 4141 root      2844 S    /usr/sbin/dnsmasq -C /etc/dnsmasq.conf.vpn -x /var/run/dnsmasq/dnsmasq.vpn.pid --server=10.243.153.1 --no
 4143 root      2840 S    /usr/sbin/dnsmasq -C /etc/dnsmasq.conf.vpn -x /var/run/dnsmasq/dnsmasq.vpn.pid --server=10.243.153.1 --no
 5897 dnsmasq   2936 S    /usr/sbin/dnsmasq -C /var/etc/dnsmasq.conf.cfg01411c -k -x /var/run/dnsmasq/dnsmasq.cfg01411c.pid
 5901 root      2864 S    /usr/sbin/dnsmasq -C /var/etc/dnsmasq.conf.cfg01411c -k -x /var/run/dnsmasq/dnsmasq.cfg01411c.pid
 7709 root      1352 S    grep dnsmasq
root@GL-SFT1200:~# cat /etc/version.date
2025-03-08 17:53:01
root@GL-SFT1200:~# cat /etc/glversion
4.7.2

Downgrading back to 4.3.24 as all DNS traffic is not routing over the VPN

hecatae · March 19, 2025, 11:02am

@hansome I run a pivpn pihole over on a racknerd server, so I have full query logs from the dns server end.
When the sft1200 is running 4.7.2 I never see a single dns entry.
When the sft1200 is running 4.3.24, I see every dns entry.
Same OpenVPN configuration on both firmwares.

dugliano · March 19, 2025, 4:17pm

you must cancel 6th line and it works
i've the same problem on marble

hecatae · March 19, 2025, 4:21pm

but is that not crackers, to have to remove something from stock firmware that GL have tested before release?