Netgear Orbi as an AP for Tomato Router - Open DNS not working

Follow

whistifam

March 27, 2017 23:56

Hi Community,

I've a problem which I have done a reasonable amount of digging (pardon the pun) and reading on, but have been unable to find a solution. Hoping the gurus in these forums can help.

I have a Tomato router setup with DHCP issuing OpenDNS settings to clients, and any client connected to this router is receiving the OpenDNS service just fine.

In addition to this, I have a downstream Netgear Orbi router (two actually, one router, one satellite) configured in AP mode to provide better network coverage.

Clients connected to the Orbi router(s) appear to be receiving DHCP/DNS from the Tomato router, and appear to be using the OpenDNS servers, but the OpenDNS service is not blocking these clients. Specifically, https://www.opendns.com/welcome/ reports that OpenDNS is setup correctly, but http://www.internetbadguys.com/ is not blocked.

More technical details below. Any hints as to what the issue would be, greatly appreciated.

 

Tomato Router (Internet Gateway) IP : 192.168.0.1

Orbi Router (AP Mode) IP : 192.168.0.2

IP config for a client connected to either the Tomato or Orbi is as follows, i.e. identical.

ipIPv4 Address. . . . . . . . . . . : 192.168.0.22(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 208.67.222.222 208.67.220.220

Other diagnostics when connected to the Orbi router

nslookup -type=txt debug.opendns.com
Server: resolver1.opendns.com
Address: 208.67.222.222

Non-authoritative answer:
debug.opendns.com text =

"server m1.syd"
debug.opendns.com text =

"device 0000B5B4C5FA99B6"
debug.opendns.com text =

"flags 422 0 8010 3840000000000000000"
debug.opendns.com text =

"originid 68609612"
debug.opendns.com text =

"actype 1"
debug.opendns.com text =

"bundle 68609612"
debug.opendns.com text =

"source 124.168.79.25:37188"

0

• 

  rotblitz March 28, 2017 06:22

  It seems that your IP address 124.168.79.25 is registered with an OpenDNS Home network ID 68609612.   You have Netgear LPC enabled too.  These two services are incompatible.

  Use either the one or the other.  For LPC ensure that there is no network at https://dashboard.opendns.com/settings/ else raise a support ticket to get your IP address released.

  Also, do not get your DHCP server to propagate the OpenDNS resolver addresses as DNS server addresses but let the Netgear router act as DNS forwarder with or without LPC enabled.  Do not configure the OpenDNS resolver addresses manually on the Netgear router with LPC enabled.

  0

  Comment actions Permalink
• 

  whistifam March 28, 2017 21:14

  Thanks rotblitz

  I do not want to use LPC. It is not enabled on the Orbi router, so I will raise a ticket to have it disabled in opendns.

  Btw, how can you tell it's enabled from my post?

  0

  Comment actions Permalink
• 

  rotblitz March 29, 2017 06:24 (Edited March 30, 2017 14:25)

  You do not need to raise a ticket at this time.  You simply disable LPC on the Netgear router and configure OpenDNS Home instead.  OpenDNS cannot do this for you.

  1. Disable LPC: https://support.opendns.com/hc/en-us/articles/227987607
  2. Configure OpenDNS Home: https://support.opendns.com/hc/en-us/articles/228006447

  The "device 0000B5B4C5FA99B6" tells that LPC is enabled.

  0

  Comment actions Permalink

Please sign in to leave a comment.