Unable to resolve DNS names

RouterOS General
1

Hi everyone,

I have a hAP ac^2 home router running RouterOS 6.47. When trying to establish a connection to a VPN server via its IP it works fine, however it complains about not being to resolve the DNS record when using the hostname instead.

When trying to resolve a hostname from the router, I get this:

/ping google.com
invalid value for argument address:
    invalid value of mac-address, mac address required
    invalid value for argument ipv6-address
    while resolving ip-address: could not get answer from dns server

However, this seems to work - which I think pretty much rules out a firewall issue?

/put [resolve google.com server 1.1.1.1]
216.58.213.110

This is my DNS configuration:

/ip dns print
                      servers: 1.1.1.1
              dynamic-servers: 10.255.255.2
               use-doh-server:
              verify-doh-cert: no
        allow-remote-requests: no
          max-udp-packet-size: 4096
         query-server-timeout: 2s
          query-total-timeout: 10s
       max-concurrent-queries: 100
  max-concurrent-tcp-sessions: 20
                   cache-size: 2048KiB
                cache-max-ttl: 1w
                   cache-used: 31KiB

Any idea what I might be missing? Thanks in advance!

2

Get rid of the slash forward:
ping google.com

3

Please enabled allow remote request =yes.

4

Thanks for the replies.

It was caused by another VPN connection that somehow managed to cause the DNS resolver to fail. Disconnecting that link solved the issue. I’ll need to investigate why that was happening.

5

The slash before ping or its absence changes nothing.

Setting allow-remote-requests to yes would help if the DNS query was failing from a LAN host, but it doesn’t help with router’s own DNS queries failing.

So I suspect the dynamically provided DNS server (10.255.255.2) to be guilty. The DNS proxy in RouterOS doesn’t try all servers - it keeps using one of them until it fails to provide a response within some timeout; a negative response (domain name doesn’t exist) is still a response so it doesn’t lead to switching to the other server.