Dnsmasq possible feature request?

Started by stumper, May 30, 2025, 04:09:07 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
May 30, 2025, 04:09:07 AM Last Edit: May 30, 2025, 04:26:42 AM by stumper
@Monviech (Cedrik): Are there any plans with Dnsmasq to have a WebUI option to add pre-defined DNSBL such as hagzei pro, oisd.big, ...?

Context
My goal is to run Dnsmasq standalone, for DHCP, local DNS (static and dynamic DHCP reservations/leases) + external DNS recursive servers (System | Settings | General), and having DNSBL capabilities for blocking "stuff" using pre-defined DNSBL, similar to what is in Unbound currently (pre-defined block lists in WebUI).

Current Understanding
I am familiar with Dnsmasq /usr/local/etc/dnsmasq.conf.d/*.conf capabilities and have successfully manually download (via curl) the hagzei pro DNSBL into a "dnsbl-hagezi-pro.conf) file under the .../dnsmasq.conf.d/  directory and have that file successfully incorporated into a running Dnsmasq configuration.

Reason for my feature request question
Before I go down the path of creating a cron job to periodically download updated DNSBL, write a script to consolidate different DNSBL, I wanted to see if this is a possible planned capability or if this could be considered for a feature request (I'll submit request if agreed to)??

N5105  4GB | 250GB | 2x2.5GbE i226-v
May 30, 2025, 06:32:25 AM #1
You can always open requests on github. If something makes it in or not depends on how many people want it and the discussion around it.

The blocklist feature in dnsmasq is not really advanced, aka it can only block everything but not per network like unbound can with views. This is also why most people use adguard or pihole.

I personally do not think a lot of people will use it, cronjob + custom file seems to do the job just fine with minimal overhead.

Also I dont think you have to consolidate these lists, just create multiple .conf files, one for each list.
Hardware:
DEC740
May 30, 2025, 08:16:32 PM #2
Monviech (Cedrik): Thank you again for your Dnsmasq responses.

I have a simple home network (4 VLAN) and with the following configuration, I am able to allow select subnets (I only needed one for my current needs) to not have the DNSBL apply:

- System | Settings | General, I have 2 public DNS servers setup
- Dnsmasq | DHCP Ranges for 4 VLAN and one of those VLAN with DHCP Option 6 (DNS Server) pointing to an external DNS Server (which could be the same one as what is in System | Settings | General.

Although this setup is not as advanced as Unbound, adguard or pinole, it does enable for allowing select subnets to bypass the DNSBL.

Hopefully this information may be helpful for others who may be interested in having a single DNS and DHCP solution with DNSBL capabilities.
N5105  4GB | 250GB | 2x2.5GbE i226-v
Print
Go Up Pages1
User actions