Site Tools


advanced-dhcpdns

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
advanced-dhcpdns [2024/12/26 15:53] – [DHCP/DNS/TFTP] -Condense intro sentence hogwildadvanced-dhcpdns [2025/08/13 03:53] (current) – [DHCP Client (WAN)] hogwild
Line 40: Line 40:
     * Some are filtered.     * Some are filtered.
  
-  * Priority - should be left at //no-resolv// to prevent DNS leaks. \\ This should never be selected if using DNSCRYPT. To prevent leaks, \\ enable \\ //Intercept DNS port//.+  * Priority - should be left at //no-resolv// to prevent DNS leaks. \\ This should never be selected if DNSCRYPT is enabled\\ To prevent leaks, enable //Intercept DNS port//.
  
   * Local Port - the port on which dnscrypt-proxy speaks with \\ FreshTomato DNS. Leave this at 40 unless you're advanced. \\ Don't set it to 53, it could create a loop.   * Local Port - the port on which dnscrypt-proxy speaks with \\ FreshTomato DNS. Leave this at 40 unless you're advanced. \\ Don't set it to 53, it could create a loop.
Line 48: Line 48:
  \\  \\
  
-**Use Stubby (DNS-over-TLS):** enables the Stubby DNS Stub resolver, to enhance DNS privacy.+**Use Stubby** (DNS-over-TLS)**:** enables the Stubby DNS Stub resolver, to enhance DNS privacy.
  
 DNS over TLS ("DoT") sends DNS queries via a secure (TLS-encrypted) connection. TLS is the same technology \\ that encrypts secure Web traffic. This prevents third parties from seeing your DNS queries. DNS over TLS ("DoT") sends DNS queries via a secure (TLS-encrypted) connection. TLS is the same technology \\ that encrypts secure Web traffic. This prevents third parties from seeing your DNS queries.
  
- \\+  * **Show/Hide Servers**: checking this displays a table of possible Stubby servers to be used. \\ Unchecking this hides the table.
  
-When Stubby is enabled, further options appear:+ \\  \\
  
 {{:pasted:20220420-181042.png}} {{:pasted:20220420-181042.png}}
Line 60: Line 60:
  \\  \\
  
-**Upstream resolvers:** selects the upstream servers responsible for performing name resolution.+**Upstream resolvers:** The actual list/table of possible upstream servers to use for performing name resolution. 
 + 
 +Mousing over the name of any upstream resolver displays the following about about that server: 
 + 
 + \\ 
 + 
 +{{::advanced-dhcp_dns_tftp-stubby_mouseover.png?317}}\\ 
 + 
 +  - The IP versions supported 
 +  - The server's status 
 +  - Authorized domain - (the domain name used for \\ authentication between your Stubby client and \\ an upstream DNS server that \\ supports encrypted queries. 
 +  - The port used 
 + 
 +\\
  
  \\  \\
Line 100: Line 113:
 //udhcpc// (the DHCP client FreshTomato uses to obtain a WAN IP address) has a problem. It has a DHCP discovery packet size 590 bytes long. However, DHCP relay servers can handle only DHCP discovery packets up to 576 bytes. If there are DHCP relay servers between FreshTomato and your ISP's DHCP server, FreshTomato might fail to acquire a DHCP lease on the WAN interface. //udhcpc// (the DHCP client FreshTomato uses to obtain a WAN IP address) has a problem. It has a DHCP discovery packet size 590 bytes long. However, DHCP relay servers can handle only DHCP discovery packets up to 576 bytes. If there are DHCP relay servers between FreshTomato and your ISP's DHCP server, FreshTomato might fail to acquire a DHCP lease on the WAN interface.
  
-The extra bytes were all padding, and thus unnecessary.  Developers eliminated the padding, reducing udhcpc DHCP discovery packet size to 331 bytes. This size became the default setting. Now, udhcpc can successfully obtain a DHCP lease from an ISP with DHCP relays.+The extra bytes were padding, and thus unnecessary.  Developers deleted the padding, reducing udhcpc DHCP discovery packet size to 331 bytes. This size became the default setting. Now, udhcpc can successfully obtain a DHCP lease from an ISP with DHCP relays.
  
 Some users may not be able to obtain a WAN IP address unless they disable this setting. (Default: Enabled). Some users may not be able to obtain a WAN IP address unless they disable this setting. (Default: Enabled).
advanced-dhcpdns.1735228380.txt.gz · Last modified: by hogwild