When i query for a ns then an a record i get nodata

hasankayra04 · October 22, 2023, 11:47am

The issue I am facing:
When i query for a ns then an a record i get nodata.
My setup is like this:
dnsmim > pihole > unbound > stubby > nextdns
When i do the same using pihole port everything works.
But when i use the dnsmim's port the error happens.
(dnsmim is there to modify blocked requests ip from 0.0.0.0 to x.x.x.x)
(i know pihole has the same ability and i am using it, sadly nextdns doesn't have it)
Here is my code, i have no idea what could be the problem:

const dnsPacket = require('dns-packet');
const dgram = require('dgram');
const net = require('net');
const { RateLimiterMemory } = require('rate-limiter-flexible');
const qmodule = require('q');
const upstreamDNSServer = '127.0.0.1';
const upstreamDNSPort = 5053;
const listenPort = 53;
const listenIp = '0.0.0.0'
const modifiedIP = 'xxx.xxx.xxx.xxx';
const debug = false //Should we send logs to console?
const basicdebug = true //Send basic logs to console?
const onlyLocal = false; //Only log local request. (localhost)

const generalRateLimiter = new RateLimiterMemory({
    points: 600, // Number of requests allowed within the duration
    duration: 60, // Duration in seconds
  });

const localRateLimiter = new RateLimiterMemory({
    points: 2000, // Number of requests allowed within the duration
    duration: 60, // Duration in seconds
  });

const outputRateLimiter = new RateLimiterMemory({
  points: 5000, // Number of requests allowed within the duration
  duration: 60, // Duration in seconds
});

// UDP DNS server
const udpServer = dgram.createSocket('udp4');

udpServer.on('message', async (message, rinfo) => {
  if (debug || basicdebug) {
    if (!onlyLocal) {
    console.log('Received UDP DNS query from:', rinfo.address);
  } else if (onlyLocal) {
    if (rinfo.address=="127.0.0.1") {
    console.log('Received UDP DNS query from:', rinfo.address);
    }
  }
  }

  let clientIp;
  await getClientIp(rinfo.address, null).then(clientIpFunction => {
  clientIp = clientIpFunction
  })

  try {
    await outputRateLimiter.consume(1);
    if (clientIp=="127.0.0.1") {
    await localRateLimiter.consume(clientIp); // Apply rate limiting
    if (debug || basicdebug) console.log("Using local rate-limit.")
    } else {
    await generalRateLimiter.consume(clientIp); // Apply rate limiting
    }

    const query = dnsPacket.decode(message);
    if (debug) {
      if (!onlyLocal) {
      console.log('Received DNS query:', query);
      } else if (onlyLocal) {
      if (clientIp=="127.0.0.1") {
      console.log('Received DNS query:', query);
      }
      }
      }

    const question = query.questions[0];
    if (debug) {
      if (!onlyLocal) {
      console.log('DNS question:', question);
      } else if (onlyLocal) {
      if (clientIp=="127.0.0.1") {
      console.log('DNS question:', question);
      }
      }
    }

    const upstreamDNSMessage = {
      type: 'query',
      id: query.id,
      questions: [question],
    };

    const upstreamDNSRequest = dgram.createSocket('udp4');

    upstreamDNSRequest.on('error', (err) => {
      console.error('Error in upstream DNS request:', err);
      upstreamDNSRequest.close();
    });

    upstreamDNSRequest.send(
      dnsPacket.encode(upstreamDNSMessage),
      upstreamDNSPort,
      upstreamDNSServer,
      (err) => {
        if (err) {
          console.error('Error sending DNS request:', err);
          upstreamDNSRequest.close();
          return;
        }
        if (debug || basicdebug) {
          if (!onlyLocal) {
          console.log('Sent DNS request to upstream DNS server:', upstreamDNSServer, upstreamDNSPort);
          } else if (onlyLocal) {
          if (clientIp=="127.0.0.1") {
          console.log('Sent DNS request to upstream DNS server:', upstreamDNSServer, upstreamDNSPort);
          }
          }
        }
      }
    );

    upstreamDNSRequest.on('message', (upstreamDNSResponse) => {
      if (debug || basicdebug) {
        if (!onlyLocal) {
        console.log('Received DNS response from upstream DNS server:', upstreamDNSServer, upstreamDNSPort);
        } else if (onlyLocal) {
        if (clientIp=="127.0.0.1") {
        console.log('Received DNS response from upstream DNS server:', upstreamDNSServer, upstreamDNSPort);
        }
        }
        }

      const response = dnsPacket.decode(upstreamDNSResponse);
      if (debug) {
        if (!onlyLocal) {
        console.log('Upstream DNS response:', response);
        } else if (onlyLocal) {
        if (clientIp=="127.0.0.1") {
        console.log('Upstream DNS response:', response);
        }
        }
      }

      if (response.answers.length > 0) {
        const answer = response.answers[0];

        if (answer.data === '0.0.0.0' || answer.data === '127.0.0.1') {
          // Modify the response IP address
          answer.data = modifiedIP;
          if (debug || basicdebug) {
          if (!onlyLocal) {
          console.log('Modified DNS response:', answer);
          } else if (onlyLocal) {
          if (clientIp=="127.0.0.1") {
          console.log('Modified DNS response:', answer);
          }
          }
          }
        }
      }

      const modifiedResponse = dnsPacket.encode(response);
      udpServer.send(modifiedResponse, rinfo.port, rinfo.address, (err) => {
        if (err) {
          console.error('Error sending DNS response:', err);
        }
        if (debug || basicdebug) {
        if (!onlyLocal) {
        console.log('Sent DNS response to the client:', rinfo.address, rinfo.port);
        } else if (onlyLocal) {
        if (clientIp=="127.0.0.1") {
        console.log('Sent DNS response to the client:', rinfo.address, rinfo.port);
        }
        }
        }
      });

      upstreamDNSRequest.close();
    });

    upstreamDNSRequest.on('error', (err) => {
      console.error('Error in upstream DNS request:', err);
      upstreamDNSRequest.close();
    });
  } catch (error) {
    console.error('Rate limit exceeded for UDP request:', error);
    udpServer.send('Rate limit exceeded', rinfo.port, rinfo.address);
  }
});

udpServer.on('error', (err) => {
  console.error('UDP server error:', err);
  udpServer.close();
});

udpServer.bind(listenPort, listenIp, () => {
  /*if (debug || basicdebug)*/ console.log(`UDP server listening on ${listenIp}:${listenPort}`);
const Monitor = require('ping-monitor');
const myMonitor2 = new Monitor({
    website: 'https://uptime.betterstack.com/api/v1/heartbeat/gbk2vg4RKVkeUxYjWkfCV7F4',
    title: 'Raging Flame2',
    interval: 10 // minutes
});
myMonitor2.on('up', function (res, state) {
   console.log('Yay!! ' + res.website + ' is up.');  //console.log('Yay!! ' + state.address + ' is up.');
});
myMonitor2.on('down', function (res, state) {
   console.log('Oh Snap!! ' + res.website + ' is down! ' + res.statusMessage); //console.log('Oh Snap!! ' + state.address + ' is down! ' + state.statusMessage);
});
myMonitor2.on('stop', function (res, state) {
   console.log(website + ' monitor has stopped.');  //console.log(state.address + ' monitor has stopped.');
});
myMonitor2.on('error', function (error) {
   console.log(error);
});
});

// Helper function to parse headers from the DNS message
function parseHeaders(message) {
  const headers = {};
  const lines = message.split('\n');

  for (const line of lines) {
    const [key, value] = line.split(':');
    if (key && value) {
      headers[key.toLowerCase().trim()] = value.trim();
    }
  }

  return headers;
}

// TCP DNS server
const tcpServer = net.createServer((socket) => {
  if (debug || basicdebug) console.log('TCP DNS query received from:', socket.remoteAddress);

  socket.on('data', async (data) => {
    if (debug) console.log('Received TCP DNS query:', data.toString('hex'));

    let clientIp;
    await getClientIp(socket.remoteAddress, null).then(clientIpFunction => {
        clientIp = clientIpFunction
        })

    try {
        await outputRateLimiter.consume(1);
        if (clientIp=="127.0.0.1") {
            await localRateLimiter.consume(clientIp); // Apply rate limiting
            if (debug || basicdebug) console.log("Using local rate-limit.")
            } else {
            await generalRateLimiter.consume(clientIp); // Apply rate limiting
            }

      try {
        const query = dnsPacket.streamDecode(data, 'tcp');
        if (debug) console.log('Received DNS query:', query);

        const question = query.questions[0];
        if (debug) console.log('DNS question:', question);

        const upstreamDNSMessage = {
          type: 'query',
          id: query.id,
          questions: [question],
        };

        const upstreamDNSRequest = dgram.createSocket('udp4');

        upstreamDNSRequest.on('error', (err) => {
          console.error('Error in upstream DNS request:', err);
          upstreamDNSRequest.close();
          socket.end();
        });

        upstreamDNSRequest.send(
          dnsPacket.encode(upstreamDNSMessage),
          upstreamDNSPort,
          upstreamDNSServer,
          (err) => {
            if (err) {
              console.error('Error sending DNS request:', err);
              upstreamDNSRequest.close();
              socket.end();
              return;
            }
            if (debug || basicdebug) console.log('Sent DNS request to upstream DNS server:', upstreamDNSServer, upstreamDNSPort);
          }
        );

        upstreamDNSRequest.on('message', (upstreamDNSResponse) => {
          if (debug || basicdebug) console.log('Received DNS response from upstream DNS server:', upstreamDNSServer, upstreamDNSPort);

          const response = dnsPacket.decode(upstreamDNSResponse);
          if (debug) console.log('Upstream DNS response:', response);

          if (response.answers.length > 0) {
            const answer = response.answers[0];

            if (answer.data === '0.0.0.0' || answer.data === '127.0.0.1') {
              // Modify the response IP address
              answer.data = modifiedIP;
              if (debug || basicdebug) console.log('Modified DNS response:', answer);
            }
          }

          const modifiedResponse = dnsPacket.streamEncode(response);
          socket.write(modifiedResponse, (err) => {
            if (err) {
              console.error('Error sending DNS response:', err);
            }
            if (debug || basicdebug) console.log('Sent DNS response to the client:', socket.remoteAddress);
            socket.end();
          });

          upstreamDNSRequest.close();
        });

        upstreamDNSRequest.on('error', (err) => {
          console.error('Error in upstream DNS request:', err);
          upstreamDNSRequest.close();
          socket.end();
        });
      } catch (error) {
        console.error('Error decoding DNS query:', error);
      }
    } catch (error) {
      console.error('Rate limit exceeded for TCP request:', error);
      socket.write('Rate limit exceeded');
      socket.end();
    }
  });

  socket.on('error', (err) => {
    console.error('TCP socket error:', err);
    socket.destroy();
  });

  socket.on('timeout', () => {
    console.error('TCP socket request timed out');
    socket.destroy();
  });
});

tcpServer.on('error', (err) => {
  console.error('TCP server error:', err);
  tcpServer.close();
});

tcpServer.listen(listenPort, listenIp, () => {
  /*if (debug || basicdebug)*/ console.log(`TCP server listening on ${listenIp}:${listenPort}`);
});

function getClientIp(address51, message) {
    if (debug) console.log("ip detect begin")
    const deferred = qmodule.defer();
    if (address51 === '127.0.0.1') {
        // Step 2: Check for X-Forwarded-For header
        let xForwardedFor = null
        if (message) {
        const headers = parseHeaders(message.toString());
        if (debug) if (headers[0]) console.log(headers)
        xForwardedFor = headers['x-forwarded-for'];
        } else if (!message) {
        xForwardedFor = null
        }
    
        if (xForwardedFor) {
          clientIp = xForwardedFor;
          if (debug) console.log("Forwarded request", clientIp)
          deferred.resolve(clientIp)
        } else {
          clientIp = address51;
          if (debug) console.log("Non-forwarded request", clientIp)
          deferred.resolve(clientIp)
        }
      } else {
        clientIp = address51;
        if (debug) console.log("Forward not allowed", clientIp)
        deferred.resolve(clientIp)
      }
      return deferred.promise;
}

jfb · October 22, 2023, 5:33pm

What are you trying to accomplish with this chain? That's a lot of software to get DNS resolution.

Please elaborate on what each process in the chain adds to the DNS resolution process?

hasankayra04 · October 22, 2023, 6:32pm

Unbound does caching.
Stubby is there to send dns request to nextdns with dot.

jfb · October 22, 2023, 6:44pm

Pi-hole also caches. Unbound seems superfluous in this setup.

What is dnsmin doing specifically that Pi-hole is unable to do?

DanSchaper · October 23, 2023, 6:12pm

Are you forcing udp only? A query for NS is going to contain a lot of data and will almost always need to use tcp for the transaction.

hasankayra04 · October 23, 2023, 6:20pm

I did explain what it did, but here it is again. Also the code is available for to take a look.
(dnsmim is there to modify blocked requests ip from 0.0.0.0 to x.x.x.x)
(i know pihole has the same ability and i am using it, sadly nextdns doesn't have it)

Here is my code, i have no idea what could be the problem:

const dnsPacket = require('dns-packet');
const dgram = require('dgram');
const net = require('net');
const { RateLimiterMemory } = require('rate-limiter-flexible');
const qmodule = require('q');
const upstreamDNSServer = '127.0.0.1';
const upstreamDNSPort = 5053;
const listenPort = 53;
const listenIp = '0.0.0.0'
const modifiedIP = 'xxx.xxx.xxx.xxx';
const debug = false //Should we send logs to console?
const basicdebug = true //Send basic logs to console?
const onlyLocal = false; //Only log local request. (localhost)

const generalRateLimiter = new RateLimiterMemory({
    points: 600, // Number of requests allowed within the duration
    duration: 60, // Duration in seconds
  });

const localRateLimiter = new RateLimiterMemory({
    points: 2000, // Number of requests allowed within the duration
    duration: 60, // Duration in seconds
  });

const outputRateLimiter = new RateLimiterMemory({
  points: 5000, // Number of requests allowed within the duration
  duration: 60, // Duration in seconds
});

// UDP DNS server
const udpServer = dgram.createSocket('udp4');

udpServer.on('message', async (message, rinfo) => {
  if (debug || basicdebug) {
    if (!onlyLocal) {
    console.log('Received UDP DNS query from:', rinfo.address);
  } else if (onlyLocal) {
    if (rinfo.address=="127.0.0.1") {
    console.log('Received UDP DNS query from:', rinfo.address);
    }
  }
  }

  let clientIp;
  await getClientIp(rinfo.address, null).then(clientIpFunction => {
  clientIp = clientIpFunction
  })

  try {
    await outputRateLimiter.consume(1);
    if (clientIp=="127.0.0.1") {
    await localRateLimiter.consume(clientIp); // Apply rate limiting
    if (debug || basicdebug) console.log("Using local rate-limit.")
    } else {
    await generalRateLimiter.consume(clientIp); // Apply rate limiting
    }

    const query = dnsPacket.decode(message);
    if (debug) {
      if (!onlyLocal) {
      console.log('Received DNS query:', query);
      } else if (onlyLocal) {
      if (clientIp=="127.0.0.1") {
      console.log('Received DNS query:', query);
      }
      }
      }

    const question = query.questions[0];
    if (debug) {
      if (!onlyLocal) {
      console.log('DNS question:', question);
      } else if (onlyLocal) {
      if (clientIp=="127.0.0.1") {
      console.log('DNS question:', question);
      }
      }
    }

    const upstreamDNSMessage = {
      type: 'query',
      id: query.id,
      questions: [question],
    };

    const upstreamDNSRequest = dgram.createSocket('udp4');

    upstreamDNSRequest.on('error', (err) => {
      console.error('Error in upstream DNS request:', err);
      upstreamDNSRequest.close();
    });

    upstreamDNSRequest.send(
      dnsPacket.encode(upstreamDNSMessage),
      upstreamDNSPort,
      upstreamDNSServer,
      (err) => {
        if (err) {
          console.error('Error sending DNS request:', err);
          upstreamDNSRequest.close();
          return;
        }
        if (debug || basicdebug) {
          if (!onlyLocal) {
          console.log('Sent DNS request to upstream DNS server:', upstreamDNSServer, upstreamDNSPort);
          } else if (onlyLocal) {
          if (clientIp=="127.0.0.1") {
          console.log('Sent DNS request to upstream DNS server:', upstreamDNSServer, upstreamDNSPort);
          }
          }
        }
      }
    );

    upstreamDNSRequest.on('message', (upstreamDNSResponse) => {
      if (debug || basicdebug) {
        if (!onlyLocal) {
        console.log('Received DNS response from upstream DNS server:', upstreamDNSServer, upstreamDNSPort);
        } else if (onlyLocal) {
        if (clientIp=="127.0.0.1") {
        console.log('Received DNS response from upstream DNS server:', upstreamDNSServer, upstreamDNSPort);
        }
        }
        }

      const response = dnsPacket.decode(upstreamDNSResponse);
      if (debug) {
        if (!onlyLocal) {
        console.log('Upstream DNS response:', response);
        } else if (onlyLocal) {
        if (clientIp=="127.0.0.1") {
        console.log('Upstream DNS response:', response);
        }
        }
      }

      if (response.answers.length > 0) {
        const answer = response.answers[0];

        if (answer.data === '0.0.0.0' || answer.data === '127.0.0.1') {
          // Modify the response IP address
          answer.data = modifiedIP;
          if (debug || basicdebug) {
          if (!onlyLocal) {
          console.log('Modified DNS response:', answer);
          } else if (onlyLocal) {
          if (clientIp=="127.0.0.1") {
          console.log('Modified DNS response:', answer);
          }
          }
          }
        }
      }

      const modifiedResponse = dnsPacket.encode(response);
      udpServer.send(modifiedResponse, rinfo.port, rinfo.address, (err) => {
        if (err) {
          console.error('Error sending DNS response:', err);
        }
        if (debug || basicdebug) {
        if (!onlyLocal) {
        console.log('Sent DNS response to the client:', rinfo.address, rinfo.port);
        } else if (onlyLocal) {
        if (clientIp=="127.0.0.1") {
        console.log('Sent DNS response to the client:', rinfo.address, rinfo.port);
        }
        }
        }
      });

      upstreamDNSRequest.close();
    });

    upstreamDNSRequest.on('error', (err) => {
      console.error('Error in upstream DNS request:', err);
      upstreamDNSRequest.close();
    });
  } catch (error) {
    console.error('Rate limit exceeded for UDP request:', error);
    udpServer.send('Rate limit exceeded', rinfo.port, rinfo.address);
  }
});

udpServer.on('error', (err) => {
  console.error('UDP server error:', err);
  udpServer.close();
});

udpServer.bind(listenPort, listenIp, () => {
  /*if (debug || basicdebug)*/ console.log(`UDP server listening on ${listenIp}:${listenPort}`);
const Monitor = require('ping-monitor');
const myMonitor2 = new Monitor({
    website: 'https://uptime.betterstack.com/api/v1/heartbeat/gbk2vg4RKVkeUxYjWkfCV7F4',
    title: 'Raging Flame2',
    interval: 10 // minutes
});
myMonitor2.on('up', function (res, state) {
   console.log('Yay!! ' + res.website + ' is up.');  //console.log('Yay!! ' + state.address + ' is up.');
});
myMonitor2.on('down', function (res, state) {
   console.log('Oh Snap!! ' + res.website + ' is down! ' + res.statusMessage); //console.log('Oh Snap!! ' + state.address + ' is down! ' + state.statusMessage);
});
myMonitor2.on('stop', function (res, state) {
   console.log(website + ' monitor has stopped.');  //console.log(state.address + ' monitor has stopped.');
});
myMonitor2.on('error', function (error) {
   console.log(error);
});
});

// Helper function to parse headers from the DNS message
function parseHeaders(message) {
  const headers = {};
  const lines = message.split('\n');

  for (const line of lines) {
    const [key, value] = line.split(':');
    if (key && value) {
      headers[key.toLowerCase().trim()] = value.trim();
    }
  }

  return headers;
}

// TCP DNS server
const tcpServer = net.createServer((socket) => {
  if (debug || basicdebug) console.log('TCP DNS query received from:', socket.remoteAddress);

  socket.on('data', async (data) => {
    if (debug) console.log('Received TCP DNS query:', data.toString('hex'));

    let clientIp;
    await getClientIp(socket.remoteAddress, null).then(clientIpFunction => {
        clientIp = clientIpFunction
        })

    try {
        await outputRateLimiter.consume(1);
        if (clientIp=="127.0.0.1") {
            await localRateLimiter.consume(clientIp); // Apply rate limiting
            if (debug || basicdebug) console.log("Using local rate-limit.")
            } else {
            await generalRateLimiter.consume(clientIp); // Apply rate limiting
            }

      try {
        const query = dnsPacket.streamDecode(data, 'tcp');
        if (debug) console.log('Received DNS query:', query);

        const question = query.questions[0];
        if (debug) console.log('DNS question:', question);

        const upstreamDNSMessage = {
          type: 'query',
          id: query.id,
          questions: [question],
        };

        const upstreamDNSRequest = dgram.createSocket('udp4');

        upstreamDNSRequest.on('error', (err) => {
          console.error('Error in upstream DNS request:', err);
          upstreamDNSRequest.close();
          socket.end();
        });

        upstreamDNSRequest.send(
          dnsPacket.encode(upstreamDNSMessage),
          upstreamDNSPort,
          upstreamDNSServer,
          (err) => {
            if (err) {
              console.error('Error sending DNS request:', err);
              upstreamDNSRequest.close();
              socket.end();
              return;
            }
            if (debug || basicdebug) console.log('Sent DNS request to upstream DNS server:', upstreamDNSServer, upstreamDNSPort);
          }
        );

        upstreamDNSRequest.on('message', (upstreamDNSResponse) => {
          if (debug || basicdebug) console.log('Received DNS response from upstream DNS server:', upstreamDNSServer, upstreamDNSPort);

          const response = dnsPacket.decode(upstreamDNSResponse);
          if (debug) console.log('Upstream DNS response:', response);

          if (response.answers.length > 0) {
            const answer = response.answers[0];

            if (answer.data === '0.0.0.0' || answer.data === '127.0.0.1') {
              // Modify the response IP address
              answer.data = modifiedIP;
              if (debug || basicdebug) console.log('Modified DNS response:', answer);
            }
          }

          const modifiedResponse = dnsPacket.streamEncode(response);
          socket.write(modifiedResponse, (err) => {
            if (err) {
              console.error('Error sending DNS response:', err);
            }
            if (debug || basicdebug) console.log('Sent DNS response to the client:', socket.remoteAddress);
            socket.end();
          });

          upstreamDNSRequest.close();
        });

        upstreamDNSRequest.on('error', (err) => {
          console.error('Error in upstream DNS request:', err);
          upstreamDNSRequest.close();
          socket.end();
        });
      } catch (error) {
        console.error('Error decoding DNS query:', error);
      }
    } catch (error) {
      console.error('Rate limit exceeded for TCP request:', error);
      socket.write('Rate limit exceeded');
      socket.end();
    }
  });

  socket.on('error', (err) => {
    console.error('TCP socket error:', err);
    socket.destroy();
  });

  socket.on('timeout', () => {
    console.error('TCP socket request timed out');
    socket.destroy();
  });
});

tcpServer.on('error', (err) => {
  console.error('TCP server error:', err);
  tcpServer.close();
});

tcpServer.listen(listenPort, listenIp, () => {
  /*if (debug || basicdebug)*/ console.log(`TCP server listening on ${listenIp}:${listenPort}`);
});

function getClientIp(address51, message) {
    if (debug) console.log("ip detect begin")
    const deferred = qmodule.defer();
    if (address51 === '127.0.0.1') {
        // Step 2: Check for X-Forwarded-For header
        let xForwardedFor = null
        if (message) {
        const headers = parseHeaders(message.toString());
        if (debug) if (headers[0]) console.log(headers)
        xForwardedFor = headers['x-forwarded-for'];
        } else if (!message) {
        xForwardedFor = null
        }
    
        if (xForwardedFor) {
          clientIp = xForwardedFor;
          if (debug) console.log("Forwarded request", clientIp)
          deferred.resolve(clientIp)
        } else {
          clientIp = address51;
          if (debug) console.log("Non-forwarded request", clientIp)
          deferred.resolve(clientIp)
        }
      } else {
        clientIp = address51;
        if (debug) console.log("Forward not allowed", clientIp)
        deferred.resolve(clientIp)
      }
      return deferred.promise;
}

hasankayra04 · October 23, 2023, 6:25pm

I think i might be sending ns requests over udp since i don't check for query type. But it works for the first time, then no queries can be made for the same domain until cache expires.

DanSchaper · October 23, 2023, 6:27pm

You can send the request over udp but the response is going to come over tcp almost all of the time.

There's way too many variables at play here with all of the layers and applications. I hope you figure it out but I can't review and edit your code for you.

hasankayra04 · October 23, 2023, 6:30pm

Yeah that is understandable there is something definitly wrong with my code since it works fine without it.. It's just my first time working with custom dns code and i can't figure out how would i figure out which client to send request to since it comes from a different protocol?

hasankayra04 · October 23, 2023, 6:52pm

I noticed something new, when i checked the unbound logs there is no logs for the domain after the ns record. So pi-hole is not sending a query to unbound after the ns query?

hasankayra04 · October 23, 2023, 6:55pm

Or unbound is rejecting the request?

hasankayra04 · October 23, 2023, 6:57pm

pihole.log:

Oct 23 21:56:22 dnsmasq[74129]: query[A] domain.com from 127.0.0.1
Oct 23 21:56:22 dnsmasq[74129]: forwarded domain.com to 127.0.0.1#5153
Oct 23 21:56:22 dnsmasq[74129]: reply domain.com is NODATA-IPv4

Nothing on unbound log.

Last log on unbound which is ds and ns:

Oct 23 21:50:44 unbound[109095:0] info: resolving domain.com. NS IN
Oct 23 21:50:44 unbound[109095:0] info: response for domain.com. NS IN
Oct 23 21:50:44 unbound[109095:0] info: reply from <.> 127.0.0.1#5253
Oct 23 21:50:44 unbound[109095:0] info: query response was ANSWER
Oct 23 21:50:44 unbound[109095:0] info: resolving domain.com. DS IN
Oct 23 21:50:44 unbound[109095:0] info: NSEC3s for the referral proved no DS.
Oct 23 21:50:44 unbound[109095:0] info: Verified that response is INSECURE

jfb · October 23, 2023, 8:47pm

Is your unbound instance actually running on port 5153?

What DNS server is on this port?

hasankayra04 · October 24, 2023, 4:56am

5153 is unbound.
5253 is stubby.

system · November 14, 2023, 4:56am

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.