![]() ![]() The last thing I wanted to set up was QoS, which allows for prioritisation of traffic when your link is saturated. Many thanks to Craig Andrews for his blog post on this subject! Quality of Service (QoS) Under the “Resolv and Hosts Files” tab, tick the “Ignore resolve file” box. ![]() Stubby’s configuration can be viewed at /etc/config/stubby. Go to Network > DHCP and DNS, under “DNS Forwardings” enter 127.0.0.1#5453 so dnsmasq will forward DNS queries on to stubby, which in turns reaches out to Cloudflare Cloudflare’s DNS servers are configured by default.Go to System > Startup, ensure Stubby is listed as Enabled so it starts at boot.On the router, go to System > Software, install stubby.It requires installing Stubby, a DNS stub resolver, that will forward DNS queries on to Cloudflare’s DNS. In OpenWRT this isn’t easily possible with DNS-over-HTTPS, but is when using DNS-over-TLS, which gets you to the same end-state. The other part I wanted to replicate was having my DNS queries encrypted. I mentioned in my DNS-over-HTTPS post that I’d also set up dnsmasq to do local machine name resolution, this is very trivially set up in OpenWRT under Network > DHCP and DNS and putting in the MAC address and desired IP and machine name under the Static Leases section, then hitting Save & Apply. Additional dnsmasq configuration and DNS-over-TLS Set a password then follow the quick-start guide to turn on and secure the wifi radios - they’re off by default. Once it’s up and running, the OpenWRT interface will be accessible at, with a username of root and no password. It’ll transfer the file and then install it and reboot, this will take several minutes. Run tftp -e 192.168.1.1 ( -e turns on binary mode), then put. Now the OpenWRT firmware file needs to be transferred to the router via TFTP. Keep the reset button held in until the power light starts flashing white.Once it’s fully started up, turn it off entirely, hold the reset button in again and while still holding the button in, turn the router back on.Reset the router back to factory settings by holding the reset button on the back of it in until the light starts flashing.Set your machine to have a static IP address in the range of 192.168.1.something.Unplug everything from the router except power and the ethernet cable for the machine you’ll be using to install OpenWRT from (this can’t be done wirelessly). ![]() This is used to transfer the firmware image to the router.
0 Comments
Leave a Reply. |