[kwlug-disc] Remote access to machine behind CG-NAT
Khalid Baheyeldin
kb at 2bits.com
Fri Jun 27 11:41:46 EDT 2025
No success with DNSMasq so far ...
I watched Lori's 2020 presentation, but its focus is on TFTP,
not DNS, which is a different use case.
The I followed this short tutorial:
https://dev.to/joeneville_/dnsmasq-lightweight-name-resolution-for-your-lab-2gim
I disabled systemd-resolved, and removed /etc/resolv.conf
Using this in my /etc/dnsmasq.d/local.conf
bind-interfaces
bogus-priv
domain-needed
no-resolv
no-poll
domain=home.priv
local=/home.priv/
expand-hosts
server=9.9.9.9
server=1.1.1.1
So there is no DHCP at all.
I tried adding:
listen-address=127.0.0.1
Didn't make a difference.
I tried restoring systemd-resolved, and replacing the two upstream servers
with it, like this:
server=127.0.0.1#5353
In all cases, no DNS locally, or from Wireguard peers.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20250627/11c0ade6/attachment.htm>
More information about the kwlug-disc
mailing list