Nie jesteś zalogowany. Proszę się zalogować lub zarejestrować.
eko.one.pl → Oprogramowanie / Software → DnsCrypt Problem na BB
Strony 1
Zaloguj się lub zarejestruj by napisać odpowiedź
Zastosowałem się do instrukcji : http://eko.one.pl/?p=openwrt-dnscrypt
Po restarcie nie otwiera się żadna strona, dostęp do routera przez ssh jest.
Co może być przyczyną?
Router tp-link mr 3020 z Barrier Breaker 2015-03-28 - r44952
Np, brak połączenie z hostem, nie ustawiony czas w systemie itd. Trochę za ogólnie napisałem bo pytanie jest typu "wlałem coś do baku i samochód nie jeździ". Logi chociaż pokaż.
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 0.470000] console [ttyATH0] enabled, bootconsole disabled
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 0.480000] ath79-spi ath79-spi: master is unqueued, this is deprecated
Sat Apr 4 16:44:09 2015 kern.warn kernel: [ 0.490000] m25p80 spi0.0: found s25sl032p, expected m25p80
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 0.490000] m25p80 spi0.0: s25sl032p (4096 Kbytes)
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 0.500000] 5 tp-link partitions found on MTD device spi0.0
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 0.500000] Creating 5 MTD partitions on "spi0.0":
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 0.510000] 0x000000000000-0x000000020000 : "u-boot"
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 0.520000] 0x000000020000-0x00000013031c : "kernel"
Sat Apr 4 16:44:09 2015 kern.warn kernel: [ 0.520000] mtd: partition "kernel" must either start or end on erase block boundary or be smaller than an erase block -- forcing read-only
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 0.530000] 0x00000013031c-0x0000003f0000 : "rootfs"
Sat Apr 4 16:44:09 2015 kern.warn kernel: [ 0.540000] mtd: partition "rootfs" must either start or end on erase block boundary or be smaller than an erase block -- forcing read-only
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 0.550000] mtd: device 2 (rootfs) set to be root filesystem
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 0.560000] 1 squashfs-split partitions found on MTD device rootfs
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 0.560000] 0x000000380000-0x0000003f0000 : "rootfs_data"
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 0.570000] 0x0000003f0000-0x000000400000 : "art"
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 0.570000] 0x000000020000-0x0000003f0000 : "firmware"
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 0.600000] libphy: ag71xx_mdio: probed
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 1.150000] ag71xx ag71xx.0: connected to PHY at ag71xx-mdio.1:04 [uid=004dd041, driver=Generic PHY]
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 1.160000] eth0: Atheros AG71xx at 0xb9000000, irq 4, mode:MII
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 1.170000] TCP: cubic registered
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 1.170000] NET: Registered protocol family 17
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 1.170000] Bridge firewalling registered
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 1.180000] 8021q: 802.1Q VLAN Support v1.8
Sat Apr 4 16:44:09 2015 kern.err kernel: [ 1.180000] drivers/rtc/hctosys.c: unable to open rtc device (rtc0)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 1.200000] VFS: Mounted root (squashfs filesystem) readonly on device 31:2.
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 1.200000] Freeing unused kernel memory: 256K (80350000 - 80390000)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.410000] usbcore: registered new interface driver usbfs
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.410000] usbcore: registered new interface driver hub
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.420000] usbcore: registered new device driver usb
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 4.470000] SCSI subsystem initialized
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.480000] ehci_hcd: USB 2.0 'Enhanced' Host Controller (EHCI) Driver
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.490000] ehci-platform: EHCI generic platform driver
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.490000] ehci-platform ehci-platform: EHCI Host Controller
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.500000] ehci-platform ehci-platform: new USB bus registered, assigned bus number 1
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.510000] ehci-platform ehci-platform: irq 3, io mem 0x1b000000
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.530000] ehci-platform ehci-platform: USB 2.0 started, EHCI 1.00
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.530000] hub 1-0:1.0: USB hub found
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.530000] hub 1-0:1.0: 1 port detected
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.540000] usbcore: registered new interface driver usb-storage
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 4.860000] usb 1-1: new full-speed USB device number 2 using ehci-platform
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 5.030000] hub 1-1:1.0: USB hub found
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 5.030000] hub 1-1:1.0: 4 ports detected
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 5.320000] usb 1-1.4: new full-speed USB device number 3 using ehci-platform
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 5.430000] usb 1-1.4: not running at top speed; connect to a high speed hub
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 5.440000] usb-storage 1-1.4:1.0: USB Mass Storage device detected
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 5.450000] scsi0 : usb-storage 1-1.4:1.0
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 6.720000] scsi 0:0:0:0: Direct-Access Generic USB SD Reader 1.00 PQ: 0 ANSI: 0 CCS
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 6.730000] sd 0:0:0:0: [sda] 3864576 512-byte logical blocks: (1.97 GB/1.84 GiB)
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 6.740000] sd 0:0:0:0: [sda] Write Protect is off
Sat Apr 4 16:44:09 2015 kern.debug kernel: [ 6.750000] sd 0:0:0:0: [sda] Mode Sense: 4b 00 00 08
Sat Apr 4 16:44:09 2015 kern.err kernel: [ 6.750000] sd 0:0:0:0: [sda] No Caching mode page found
Sat Apr 4 16:44:09 2015 kern.err kernel: [ 6.750000] sd 0:0:0:0: [sda] Assuming drive cache: write through
Sat Apr 4 16:44:09 2015 kern.err kernel: [ 6.780000] sd 0:0:0:0: [sda] No Caching mode page found
Sat Apr 4 16:44:09 2015 kern.err kernel: [ 6.780000] sd 0:0:0:0: [sda] Assuming drive cache: write through
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 6.800000] sda: sda1
Sat Apr 4 16:44:09 2015 kern.err kernel: [ 6.810000] sd 0:0:0:0: [sda] No Caching mode page found
Sat Apr 4 16:44:09 2015 kern.err kernel: [ 6.820000] sd 0:0:0:0: [sda] Assuming drive cache: write through
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 6.820000] sd 0:0:0:0: [sda] Attached SCSI removable disk
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 7.160000] eth0: link up (100Mbps/Full duplex)
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 8.920000] jffs2: notice: (374) jffs2_build_xattr_subsystem: complete building xattr subsystem, 1 of xdatum (1 unchecked, 0 orphan) and 15 of xref (0 dead, 2 orphan) found.
Sat Apr 4 16:44:09 2015 user.info kernel: [ 8.940000] block: attempting to load /tmp/jffs_cfg/upper/etc/config/fstab
Sat Apr 4 16:44:09 2015 user.err kernel: [ 8.940000] block: unable to load configuration (fstab: Entry not found)
Sat Apr 4 16:44:09 2015 user.info kernel: [ 8.950000] block: attempting to load /tmp/jffs_cfg/etc/config/fstab
Sat Apr 4 16:44:09 2015 user.info kernel: [ 8.960000] block: extroot: not configured
Sat Apr 4 16:44:09 2015 kern.notice kernel: [ 9.000000] jffs2: notice: (371) jffs2_build_xattr_subsystem: complete building xattr subsystem, 1 of xdatum (1 unchecked, 0 orphan) and 15 of xref (0 dead, 2 orphan) found.
Sat Apr 4 16:44:09 2015 user.info kernel: [ 9.400000] block: attempting to load /tmp/jffs_cfg/upper/etc/config/fstab
Sat Apr 4 16:44:09 2015 user.err kernel: [ 9.400000] block: unable to load configuration (fstab: Entry not found)
Sat Apr 4 16:44:09 2015 user.info kernel: [ 9.410000] block: attempting to load /tmp/jffs_cfg/etc/config/fstab
Sat Apr 4 16:44:09 2015 user.info kernel: [ 9.420000] block: extroot: not configured
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 9.460000] eth0: link down
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 11.830000] NET: Registered protocol family 10
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 11.870000] nf_conntrack version 0.5.0 (450 buckets, 1800 max)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 11.880000] ip6_tables: (C) 2000-2006 Netfilter Core Team
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 11.900000] Loading modules backported from Linux version master-2014-05-22-0-gf2032ea
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 11.900000] Backport generated by backports.git backports-20140320-37-g5c33da0
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 11.910000] ip_tables: (C) 2000-2006 Netfilter Core Team
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 11.970000] xt_time: kernel timezone is -0000
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.000000] cfg80211: Calling CRDA to update world regulatory domain
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.010000] cfg80211: World regulatory domain updated:
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.010000] cfg80211: DFS Master region: unset
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.020000] cfg80211: (start_freq - end_freq @ bandwidth), (max_antenna_gain, max_eirp), (dfs_cac_time)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.030000] cfg80211: (2402000 KHz - 2472000 KHz @ 40000 KHz), (N/A, 2000 mBm), (N/A)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.030000] cfg80211: (2457000 KHz - 2482000 KHz @ 40000 KHz), (N/A, 2000 mBm), (N/A)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.040000] cfg80211: (2474000 KHz - 2494000 KHz @ 20000 KHz), (N/A, 2000 mBm), (N/A)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.050000] cfg80211: (5170000 KHz - 5250000 KHz @ 160000 KHz), (N/A, 2000 mBm), (N/A)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.060000] cfg80211: (5250000 KHz - 5330000 KHz @ 160000 KHz), (N/A, 2000 mBm), (0 s)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.070000] cfg80211: (5490000 KHz - 5730000 KHz @ 160000 KHz), (N/A, 2000 mBm), (0 s)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.070000] cfg80211: (5735000 KHz - 5835000 KHz @ 80000 KHz), (N/A, 2000 mBm), (N/A)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.080000] cfg80211: (57240000 KHz - 63720000 KHz @ 2160000 KHz), (N/A, 0 mBm), (N/A)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.170000] PPP generic driver version 2.4.2
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.170000] NET: Registered protocol family 24
Sat Apr 4 16:44:09 2015 kern.debug kernel: [ 12.250000] ath: EEPROM regdomain: 0x0
Sat Apr 4 16:44:09 2015 kern.debug kernel: [ 12.250000] ath: EEPROM indicates default country code should be used
Sat Apr 4 16:44:09 2015 kern.debug kernel: [ 12.250000] ath: doing EEPROM country->regdmn map search
Sat Apr 4 16:44:09 2015 kern.debug kernel: [ 12.250000] ath: country maps to regdmn code: 0x3a
Sat Apr 4 16:44:09 2015 kern.debug kernel: [ 12.250000] ath: Country alpha2 being used: US
Sat Apr 4 16:44:09 2015 kern.debug kernel: [ 12.250000] ath: Regpair used: 0x3a
Sat Apr 4 16:44:09 2015 kern.debug kernel: [ 12.260000] ieee80211 phy0: Selected rate control algorithm 'minstrel_ht'
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.270000] cfg80211: Calling CRDA for country: US
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.270000] cfg80211: Regulatory domain changed to country: US
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.280000] cfg80211: DFS Master region: FCC
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.280000] cfg80211: (start_freq - end_freq @ bandwidth), (max_antenna_gain, max_eirp), (dfs_cac_time)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.290000] cfg80211: (2402000 KHz - 2472000 KHz @ 40000 KHz), (N/A, 3000 mBm), (N/A)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.300000] cfg80211: (5170000 KHz - 5250000 KHz @ 80000 KHz), (N/A, 1700 mBm), (N/A)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.310000] cfg80211: (5250000 KHz - 5330000 KHz @ 80000 KHz), (N/A, 2300 mBm), (0 s)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.320000] cfg80211: (5735000 KHz - 5835000 KHz @ 80000 KHz), (N/A, 3000 mBm), (N/A)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.320000] cfg80211: (57240000 KHz - 63720000 KHz @ 2160000 KHz), (N/A, 4000 mBm), (N/A)
Sat Apr 4 16:44:09 2015 kern.info kernel: [ 12.330000] ieee80211 phy0: Atheros AR9330 Rev:1 mem=0xb8100000, irq=2
Sat Apr 4 16:44:11 2015 user.emerg syslog: this file has been obseleted. please call "/sbin/block mount" directly
Sat Apr 4 16:44:12 2015 user.err syslog: /dev/mtdblock3 is already mounted
Sat Apr 4 16:44:12 2015 user.emerg syslog: block: /dev/mtdblock3 is already mounted
Sat Apr 4 16:44:13 2015 daemon.notice dnscrypt-proxy[854]: Starting dnscrypt-proxy 1.4.3
Sat Apr 4 16:44:13 2015 daemon.info dnscrypt-proxy[854]: Initializing libsodium for optimal performance
Sat Apr 4 16:44:13 2015 daemon.info dnscrypt-proxy[854]: Generating a new key pair
Sat Apr 4 16:44:13 2015 daemon.info dnscrypt-proxy[854]: Done
Sat Apr 4 16:44:13 2015 authpriv.info dropbear[867]: Not backgrounding
Sat Apr 4 16:44:14 2015 user.emerg syslog: setting up led USB
Sat Apr 4 16:44:14 2015 user.emerg syslog: setting up led WLAN
Sat Apr 4 16:44:14 2015 user.emerg syslog: setting up led LAN
Sat Apr 4 16:44:15 2015 user.emerg syslog: - init complete -
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Interface 'loopback' is enabled
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Interface 'loopback' is setting up now
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Interface 'loopback' is now up
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Interface 'wan' is enabled
Sat Apr 4 16:44:15 2015 kern.info kernel: [ 21.230000] IPv6: ADDRCONF(NETDEV_UP): eth0: link is not ready
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Interface 'lan' is enabled
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Interface 'lan' is setting up now
Sat Apr 4 16:44:15 2015 kern.info kernel: [ 21.240000] IPv6: ADDRCONF(NETDEV_UP): br-lan: link is not ready
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Interface 'lan' is now up
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Network device 'lo' link is up
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Interface 'loopback' has link connectivity
Sat Apr 4 16:44:15 2015 kern.info kernel: [ 21.490000] eth0: link up (100Mbps/Full duplex)
Sat Apr 4 16:44:15 2015 kern.info kernel: [ 21.490000] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Network device 'eth0' link is up
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Interface 'wan' has link connectivity
Sat Apr 4 16:44:15 2015 daemon.notice netifd: Interface 'wan' is setting up now
Sat Apr 4 16:44:16 2015 daemon.notice netifd: wan (964): udhcpc (v1.22.1) started
Sat Apr 4 16:44:16 2015 kern.info kernel: [ 22.270000] cfg80211: Calling CRDA for country: PL
Sat Apr 4 16:44:16 2015 kern.info kernel: [ 22.280000] cfg80211: Regulatory domain changed to country: PL
Sat Apr 4 16:44:16 2015 kern.info kernel: [ 22.280000] cfg80211: DFS Master region: ETSI
Sat Apr 4 16:44:16 2015 kern.info kernel: [ 22.280000] cfg80211: (start_freq - end_freq @ bandwidth), (max_antenna_gain, max_eirp), (dfs_cac_time)
Sat Apr 4 16:44:16 2015 kern.info kernel: [ 22.290000] cfg80211: (2402000 KHz - 2482000 KHz @ 40000 KHz), (N/A, 2000 mBm), (N/A)
Sat Apr 4 16:44:16 2015 kern.info kernel: [ 22.300000] cfg80211: (5170000 KHz - 5250000 KHz @ 80000 KHz), (N/A, 2000 mBm), (N/A)
Sat Apr 4 16:44:16 2015 kern.info kernel: [ 22.310000] cfg80211: (5250000 KHz - 5330000 KHz @ 80000 KHz), (N/A, 2000 mBm), (0 s)
Sat Apr 4 16:44:16 2015 kern.info kernel: [ 22.320000] cfg80211: (5490000 KHz - 5710000 KHz @ 80000 KHz), (N/A, 2700 mBm), (0 s)
Sat Apr 4 16:44:16 2015 kern.info kernel: [ 22.330000] cfg80211: (57240000 KHz - 65880000 KHz @ 2160000 KHz), (N/A, 4000 mBm), (N/A)
Sat Apr 4 16:44:16 2015 daemon.notice netifd: wan (964): Sending discover...
Sat Apr 4 16:44:16 2015 daemon.notice netifd: wan (964): Sending select for 192.168.168.228...
Sat Apr 4 16:44:16 2015 daemon.notice netifd: wan (964): Lease of 192.168.168.228 obtained, lease time 43200
Sat Apr 4 16:44:17 2015 daemon.notice netifd: Interface 'wan' is now up
Sat Apr 4 16:44:18 2015 kern.info kernel: [ 23.790000] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready
Sat Apr 4 16:44:18 2015 kern.info kernel: [ 23.790000] device wlan0 entered promiscuous mode
Sat Apr 4 16:44:18 2015 kern.info kernel: [ 24.370000] br-lan: port 1(wlan0) entered forwarding state
Sat Apr 4 16:44:18 2015 kern.info kernel: [ 24.370000] br-lan: port 1(wlan0) entered forwarding state
Sat Apr 4 16:44:18 2015 kern.info kernel: [ 24.380000] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
Sat Apr 4 16:44:18 2015 daemon.notice netifd: Bridge 'br-lan' link is up
Sat Apr 4 16:44:18 2015 daemon.notice netifd: Interface 'lan' has link connectivity
Sat Apr 4 16:44:18 2015 kern.info kernel: [ 24.390000] IPv6: ADDRCONF(NETDEV_CHANGE): br-lan: link becomes ready
Sat Apr 4 16:44:19 2015 daemon.notice netifd: Network device 'wlan0' link is up
Sat Apr 4 16:44:20 2015 kern.info kernel: [ 26.370000] br-lan: port 1(wlan0) entered forwarding state
Sat Apr 4 16:44:20 2015 daemon.info dnsmasq[1094]: started, version 2.71 cachesize 150
Sat Apr 4 16:44:20 2015 daemon.info dnsmasq[1094]: compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP no-DHCPv6 no-Lua TFTP no-conntrack no-ipset no-auth no-DNSSEC
Sat Apr 4 16:44:20 2015 daemon.info dnsmasq-dhcp[1094]: DHCP, IP range 192.168.100.100 -- 192.168.100.249, lease time 12h
Sat Apr 4 16:44:20 2015 daemon.info dnsmasq[1094]: using nameserver 208.67.222.222#53 for domain pool.ntp.org
Sat Apr 4 16:44:20 2015 daemon.info dnsmasq[1094]: using nameserver 127.0.0.1#5353
Sat Apr 4 16:44:20 2015 daemon.info dnsmasq[1094]: using local addresses only for domain lan
Sat Apr 4 16:44:20 2015 daemon.info dnsmasq[1094]: read /etc/hosts - 1 addresses
Sat Apr 4 16:44:20 2015 daemon.info dnsmasq[1094]: read /tmp/hosts/dhcp - 1 addresses
Sat Apr 4 16:44:20 2015 daemon.info dnsmasq-dhcp[1094]: read /etc/ethers - 0 addresses
Sat Apr 4 16:44:21 2015 user.notice firewall: Reloading firewall due to ifup of lan (br-lan)
Sat Apr 4 16:44:22 2015 user.notice firewall: Reloading firewall due to ifup of wan (eth0)
Sat Apr 4 17:30:08 2015 daemon.info hostapd: wlan0: STA 00:21:6b:8f:12:b6 IEEE 802.11: authenticated
Sat Apr 4 17:30:08 2015 daemon.info hostapd: wlan0: STA 00:21:6b:8f:12:b6 IEEE 802.11: authenticated
Sat Apr 4 17:30:08 2015 daemon.info hostapd: wlan0: STA 00:21:6b:8f:12:b6 IEEE 802.11: associated (aid 1)
Sat Apr 4 17:30:08 2015 daemon.info hostapd: wlan0: STA 00:21:6b:8f:12:b6 WPA: pairwise key handshake completed (RSN)
Sat Apr 4 17:30:08 2015 daemon.info dnsmasq-dhcp[1094]: DHCPREQUEST(br-lan) 192.168.100.246 00:21:6b:8f:12:b6
Sat Apr 4 17:30:08 2015 daemon.info dnsmasq-dhcp[1094]: DHCPACK(br-lan) 192.168.100.246 00:21:6b:8f:12:b6 lenovo-Ideapad-Y730
Sat Apr 4 17:30:34 2015 authpriv.info dropbear[1212]: Child connection from 192.168.100.246:44503
Sat Apr 4 17:30:41 2015 authpriv.notice dropbear[1212]: Password auth succeeded for 'root' from 192.168.100.246:44503
config dnsmasq
option domainneeded '1'
option boguspriv '1'
option filterwin2k '0'
option localise_queries '1'
option rebind_protection '1'
option rebind_localhost '1'
option local '/lan/'
option domain 'lan'
option expandhosts '1'
option nonegcache '0'
option authoritative '1'
option readethers '1'
option leasefile '/tmp/dhcp.leases'
option noresolv '1'
list server '127.0.0.1#5353'
list server '/pool.ntp.org/208.67.222.222'
config dhcp 'lan'
option interface 'lan'
option start '100'
option limit '150'
option leasetime '12h'
option dhcpv6 'server'
option ra 'server'
config dhcp 'wan'
option interface 'wan'
option ignore '1'
config odhcpd 'odhcpd'
option maindhcp '0'
option leasefile '/tmp/hosts/odhcpd'
option leasetrigger '/usr/sbin/odhcpd-update'
Zobacz, może to ci pomoże.
http://eko.one.pl/forum/viewtopic.php?p … 15#p131715
Po restarcie nie startuje...
Tylko po wpisaniu w konsoli :
/etc/init.d/dnscrypt-proxy startOtwierają się strony.
Edytując /etc/init.d/dnscrypt-proxy :
#!/bin/sh /etc/rc.common
START=50
...Zmieniłem na 80 , później na 140 i dalej to samo.
A jak zmieniłeś na 80 to zrobiłeś /etc/init.d/dnscrypt -proxy disable; /etc/init.d/dnscrypt -proxy enable żeby zobaczył zmiany?
Czy z /etc/config/network powinienem z sekcji WAN usunąć wpis o DNSach po konfiguracji DNSCrypt?
option dns '208.67.222.222 208.67.220.220'Jedno drugiemu w niczym nie przeszkadza i działa niezależnie - jako serwisy/serwery DNS dla dnscrypt-proxy równie dobrze możesz podać inne, niż domyślne - opendns.com to nie jedyna firma, która świadczy taką funkcjonalność. Podawanie tych serwerów w /etc/config/network w sekcji WAN ma chyba tylko większy sens, jak korzystasz jednocześnie z ddns oraz usług dodatkowych, świadczonych przez tą firmę (opendns.com).
A jak zmieniłeś na 80 to zrobiłeś /etc/init.d/dnscrypt -proxy disable; /etc/init.d/dnscrypt -proxy enable żeby zobaczył zmiany?
Tak zrobiłem. Problem w tym, że po restarcie strony dalej się nie otwierają. Dopiero wpisanie w konsoli:
/etc/init.d/dnscrypt-proxy start Uruchamia proces.
/etc/init.d/dnscrypt-proxy :
#!/bin/sh /etc/rc.common
START=80
start_instance () {
local section="$1"
config_get address "$section" 'address'
config_get port "$section" 'port'
config_get resolver "$section" 'resolver'
config_get resolvers_list "$section" 'resolvers_list'
service_start /usr/sbin/dnscrypt-proxy -d \
-a ${address}:${port} \
-u nobody \
-L ${resolvers_list:-'/usr/share/dnscrypt-proxy/dnscrypt-resolvers.csv'} \
-R ${resolver:-'opendns'}
}
start() {
config_load 'dnscrypt-proxy'
config_foreach start_instance 'dnscrypt-proxy'
}
stop() {
service_stop /usr/sbin/dnscrypt-proxy
}
~
- /etc/init.d/dnscrypt-proxy 1/27 3%
Odtworzyłem sytuację TranceEX (również na trunku) - jest dokładnie tak samo - ponowny restart dnscrypt-proxy dopiero umożliwia wczytywanie jakiejkolwiek strony, chociaż adres IP na WAN jest przyznany. Przy okazji zauważyłem, że np. ddns też nie działa (zarówno z domyślnej konfiguracji afraid jak i kombinowany pod luci/openwrt/BB/CC do opendns na podstawie https://support.opendns.com/entries/284 … ic-IP-nets ), dopóki ponownie nie włączyłem dnscrypt-proxy.
Restart routera też nie pomógł - nadal po owym restarcie trzeba drugi raz uruchomić dnscrypt-proxy.
Zastanawiam się czy nie jest to związane z wpisem w /etc/config/dhcp :
(...)
option noresolv '1'
(...)EDIT:
Po wielu bojach w końcu udało mi się zmusić dnscrypt-proxy do działania (mam na myśli konfigurację jak najbardziej zbliżoną do tutka) - pomogło kilkukrotne wyłączenie usługi i kilka restartów oraz włączanie i wyłączanie usługi co restart, zmiana zmiennej noresolv z podmianą na jakieś wirtualne pliki lub prawdziwe. Na koniec włączyłem usługę zgodnie z jej ustawieniami w pliku /etc/config/dnscrypt-proxy :
config dnscrypt-proxy
option address '127.0.0.1'
option port '5353'
option resolver 'opendns'
option resolvers_list '/usr/share/dnscrypt-proxy/dnscrypt-resolvers.csv'Jak widać odhaszowałem 2-ie ostatnie opcje w stosunku do oryginalnego pliku.
Po wielu kombinacjach mój aktualny fragment dotyczący dnsmasq wygląda następująco ( /etc/config/dhcp ) :
config dnsmasq
option domainneeded '1'
option boguspriv '1'
option localise_queries '1'
option rebind_protection '1'
option rebind_localhost '1'
option local '/lan/'
option domain 'lan'
option expandhosts '1'
option authoritative '1'
option readethers '1'
option leasefile '/tmp/dhcp.leases'
list server '127.0.0.1#5353'
list server '/pool.ntp.org/208.67.222.222'
option localservice '1'
option noresolv '1'
(...)Natomiast plik startowy usługi działa i wygląda obecnie tak ( /etc/init.d/dnscrypt-proxy ) :
#!/bin/sh /etc/rc.common
START=99
start_instance () {
local section="$1"
config_get address "$section" 'address'
config_get port "$section" 'port'
config_get resolver "$section" 'resolver'
config_get resolvers_list "$section" 'resolvers_list'
service_start /usr/sbin/dnscrypt-proxy -d \
-a ${address}:${port} \
-u nobody \
-L ${resolvers_list:-'/usr/share/dnscrypt-proxy/dnscrypt-resolvers.csv'} \
-R ${resolver:-'opendns'}
}
start() {
config_load 'dnscrypt-proxy'
config_foreach start_instance 'dnscrypt-proxy'
}
stop() {
service_stop /usr/sbin/dnscrypt-proxy
}Wersja dnscrypt-proxy to obecnie dnscrypt-proxy - 1.4.3-1 (z trunka).
Istotny fragment z /etc/config/system wygląda następująco :
(...)
config timeserver 'ntp'
option enabled '1'
list server 'pool.ntp.org'
list server '0.pool.ntp.org'
list server '1.pool.ntp.org'
list server '2.pool.ntp.org'
list server '3.pool.ntp.org'
(...)Sukces - działa !
A u mnie nadal nie chce, DNS hula i wszystko wygląda ok, ale test np. pod tym adresem: http://dnssec.vs.uni-due.de/ pokazuje, że jednak nie. 
Konfig identyczny jak u Ciebie.
dnsmasq działa, dnscrypt wstaje, w logach wszystko ok, ale na urządzeniach klienckich (DHCP-kiem wymuszany DNS routera) już nie waliduje.
U mnie również dnscrypt-proxy nie startował po restarcie routera. Rozwiązanie zasięgnąłem z wiki OpenWRT.
Wystarczy wejść do pliku /etc/rc.local i dodać ten fragment przed exit 0
sleep 10
/etc/init.d/dnscrypt-proxy start
U mnie sleep 5 wystarczyło. Po restarcie DNSy działały poprawnie. Trzeba również pamiętać, że prawidłowy port dla dnscrypt w confingu to 5353 a nie 2053 tak jak jest to podane w wiki.
Jako, że w trunk, BB (tu chyba prawie nic), CC deko się zmieniło to istotne fragmenty w/w plików od mojego ostatniego postu nieco uległy zmianie i obecnie wyglądają tak:
/etc/config/dnscrypt-proxy
config dnscrypt-proxy
option address '127.0.0.1'
option port '5353'
# option resolver 'cisco'
# option resolvers_list '/usr/share/dnscrypt-proxy/dnscrypt-resolvers.csv'
# option ephemeral_keys '1'
# more details at https://github.com/jedisct1/dnscrypt-proxy#public-key-client-authentication
# option client_key ''/etc/config/dhcp
config dnsmasq
option domainneeded '1'
option boguspriv '1'
option localise_queries '1'
option rebind_protection '1'
option rebind_localhost '1'
option local '/lan/'
option domain 'lan'
option expandhosts '1'
option authoritative '1'
option readethers '1'
option leasefile '/tmp/dhcp.leases'
option localservice '1'
option noresolv '1'
list server '127.0.0.1#5353'
list server '/pool.ntp.org/208.67.220.220'
(...)/etc/init.d/dnscrypt-proxy
#!/bin/sh /etc/rc.common
START=55
start_instance () {
local section="$1"
config_get address "$section" 'address'
config_get port "$section" 'port'
config_get resolver "$section" 'resolver'
config_get resolvers_list "$section" 'resolvers_list'
config_get client_key "$section" 'client_key'
config_get_bool ephemeral_keys "$section" 'ephemeral_keys'
service_start /usr/sbin/dnscrypt-proxy -d \
-a ${address}:${port} \
-u nobody \
-L ${resolvers_list:-'/usr/share/dnscrypt-proxy/dnscrypt-resolvers.csv'} \
-R ${resolver:-'cisco'} \
${ephemeral_keys:+'-E'} \
${client_key:+'--client-key='$client_key}
}
start() {
config_load 'dnscrypt-proxy'
config_foreach start_instance 'dnscrypt-proxy'
}
stop() {
service_stop /usr/sbin/dnscrypt-proxy
}/etc/config/system
(tu podajesz tylko jeden i tylko taki serwer czasu - to istotne z pkt. widzenia spójności całej konfiguracji według/w oparciu o tutek Cezarego)
(...)
config timeserver 'ntp'
option enabled '1'
list server 'pool.ntp.org'
(...)Jak używasz dodatkowo ntpclient to konfiguracja wygląda tak:
/etc/config/ntpclient
config ntpserver
option port '123'
option hostname 'pool.ntp.org'
config ntpdrift
option freq '0'
config ntpclient
option interval '600'W trunku aktualna wersja to dnscrypt-proxy-1.6.0-2 - domyślny w konfiguracji dostawca usługi zmienił nazwę na "cisco" (firma oferująca usługi na opendns.com została wykupiona przez Cisco).
Po zmianie "START= ..." nie zapomnij najpierw zatrzymać klienta ręcznie (/etc/init.d/dnscrypt-proxy stop), a następnie ręcznie go wystartować (/etc/init.d/dnscrypt-proxy start) aby uległa zmianie nazwa pliku miękkiego dowiązania w /etc/rc.d, co zaowocuje powstaniem odpowiedniego pliku:
ls -l /etc/rc.d | grep dnscrypt-proxy
lrwxrwxrwx 1 root root 24 Aug 12 15:33 S55dnscrypt-proxy -> ../init.d/dnscrypt-proxyWszystko działa bez zająknięcia.
DOPIS:
Dodatkowo aby bardziej związać wszystkie maszyny w LAN od serwera DHCP na routerze, a tym samy wymusić na nich korzystanie z domyślnego serwera DHCP na opendns.com (dodatkowo włączyć tam filtry na niechciane strony/usługi sieciowe) warto dodać 2-ie istotne zmiany:
/etc/config/firewall
(...)
config rule
option src 'lan'
option dest 'wan'
option name 'All ICMP from LAN'
option proto 'icmp'
option target 'REJECT'
(...)/etc/config/network
(zakładając, że na "wan" masz zwykłe połączenie kablowe - co do modemów komórkowych wymaga to mocnej rzeźby modyfikacji/obsługi połączeń 3G/4G w wielu plikach/pakietach i ogólnie nie u każdego operatora to zadziała - nie da się podmienić serwerów dns na inne, niż od operatora bo inaczej internet przez modem zwyczajnie nie zadziała)
(...)
config interface 'wan'
(...)
option peerdns '0'
option dns '208.67.222.222 208.67.220.220'
(...)Strony 1
Zaloguj się lub zarejestruj by napisać odpowiedź
eko.one.pl → Oprogramowanie / Software → DnsCrypt Problem na BB
Forum oparte o PunBB, wspierane przez Informer Technologies, Inc