Warning in dnsmasq core: using interface eth0 instead (Pi-Hole running on virtual interface eth0:0)

bcutter · December 24, 2021, 6:16pm

Expected Behaviour:

I´m running Pi-Hole on a virtual interface eth0:0. I updated to latest versions (core 5.7, web 5.9, ftl 5.12.1). When Pi-Hole starts up, the web interface is clear. No warnings.

Actual Behaviour:

After every Pi-Hole start, a warning is shown in the web UI:

Debug Token:

https://tricorder.pi-hole.net/miw1tePT/

Additional information:

Warning is listed on docs/dnsmasq_warn.md at 53d12d5947ab9e056243cd2701a53d955ccba922 · pi-hole/docs · GitHub - which doesn't really help me. Do I need to live with that warning?
Might be related to Finding Pi-hole IP addresses after v5.4 update @DL6ER

DL6ER · December 24, 2021, 10:03pm

The warnings have always existed in /var/log/pihole.log. A change to Pi-hole made them more visible by also printing them into /var/log/pihole-FTL.log and showing them on the dashboard.

github.com/pi-hole/FTL

Add dnsmasq warnings to message table

pi-hole:development ← pi-hole:tweak/warning_messages

opened 09:50AM - 13 Nov 21 UTC

DL6ER

+54 -6

**By submitting this pull request, I confirm the following:** - [X] I have re…ad and understood the [contributors guide](https://github.com/pi-hole/pi-hole/blob/master/CONTRIBUTING.md). - [X] I have checked that [another pull request](https://github.com/pi-hole/FTL/pulls) for this purpose does not exist. - [X] I have considered, and confirmed that this submission will be valuable to others. - [X] I accept that this submission may not be used, and the pull request closed at the will of the maintainer. - [X] I give this submission freely, and claim no ownership to its content. **How familiar are you with the codebase?:** ## 10 --- Add DNSMASQ_WARN message type whenever dnsmasq logs a warning. Also do not flush the message table on reload (but only on restart) so that config-related (i.e. one-time) warnings are not accidentally deleted.

The warning you encountered is about a shortcoming of dnsmasq which doesn't fully support alias interface. When you set it to listen on eth0:0 it indeed listens on eth0 instead. This causes the warning you'rev seeing. Your Pi-hole works as you expect it to as it catches the packets on the alias interface because this is still the same physical device.

I prepared a Bugfix for this and gave some more technical details here:

github.com/pi-hole/dnsmasq

Don't accept queries arriving on alias interface if configured not to do this.

pi-hole:master ← pi-hole:label_interfaces

opened 10:33AM - 20 Dec 21 UTC

DL6ER

+20 -25

I found the following bug/misbehavior (whatever you wanna call it): Real inte…rface is eth0. an alias is created as eth0:0 1. Config --interface=eth0 Queries on eth0 and eth0:0 are accepted because dnsmasq only compares the physical interface name string. 2. Config --interface=eth0:0 Queries on eth0 and eth0:0 are rejected (at first!) because of the physical interface's name mismatch. But there is another check "label_expection()" that does said iteration and would lead to accepting the eth0:0 query. The eth0 query is correctly rejected. In an ideal world, we should reject also the eth0:0 query when configured with "--interface=eth0". It can rather easily be done when comparing the configured interface's IP addresses instead of the name strings (or ifindex). When doing this, the warn_wild_listeners() can be dropped altogether as the strange behavior we used to warn about is fixed. The patch addresses this. https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2021q4/015938.html

You could try true binding to the alias interface instead, there is a fourth interface listening option for this in the most recent Pi-hole release

bcutter · December 24, 2021, 11:48pm

Okay got it. Still not sure what to think about those messages put in front so prominent - makes me personally feel a bit uncomfortable tbh. Maybe I just need to get used to this UI change and learn to safely ignore those warnings… which also is not a good behavior I think

Meanwhile there are even more warnings I need to (should I?) take a look at.

Anyway: what is that 4th option -> it is the bind option one below the current respond one I guess. Doesn‘t sound like something I‘m looking for according to the docs https://docs.pi-hole.net/ftldns/interfaces/:

About the only time when this is useful is when running another nameserver on the same port on the same machine. This may also happen if you run a virtualization API such as libvirt.

Man DNS has become quite complicated. Props to all you guys mastering all that technical details

For now I think I‘ll start living with and probably ignoring those warnings. As you said - they‘ve always been there and things are working fine anyway.

Thanks for explanations - and merry x-mas

DL6ER · December 25, 2021, 9:32am

No, you can change your configuration to avoid them.

The warning using interface eth0 instead should be resolved in the future when my patch (see PR above) is submitted and accepted in dnsmasq upstream. As said, the warning is just there to notify you that dnsmasq may be behaving differently than you configured it to. If this different behavior is okay for you, that's okay.

The other warning, reducing DNS packet size can be avoided by

edns-packet-max=1280

as described on the warnings docs page: dnsmasq warnings - Pi-hole documentation

bcutter · December 25, 2021, 12:08pm

So I need to create the separate file as stated on the page or can I add it to the /etc/pihole/pihole-FTL.conf?

DL6ER · December 25, 2021, 12:25pm

It needs to go into a separate file in /etc/dnsmasq.d/

DL6ER · December 29, 2021, 8:32am

A post was merged into an existing topic: DNSMASQ_WARN reducing DNS packet size

system · January 19, 2022, 8:32am

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.