Usually I use DOH but yesterday I switched to regular DNS so I can use FWD entries in ROS.
Now I have a behaviour I do not understand and I could not find any information regarding this in MT docs (DNS and DHCP-SERVER docs).
I have a single dhcp-server configured and added 2 DNS resolvers.
Code: Select all
/ip dns
set allow-remote-requests=yes servers=2a07:a8c0::bc:79c1,2a07:a8c1::bc:79c1 verify-doh-cert=yes
/ip dhcp-server network
add address=192.168.0.0/24 comment=defconf dns-server=192.168.0.254 domain=home.arpa gateway=192.168.0.254 netmask=24
Code: Select all
[user@mikrotik] /ip/dns> pri
servers: 2a07:a8c0::bc:79c1,2a07:a8c1::bc:79c1
dynamic-servers:
use-doh-server:
...
On one of my Linux clients, resolvectl shows:
Code: Select all
Link 34 (wlan0)
Current Scopes: DNS LLMNR/IPv4 LLMNR/IPv6
Protocols: +DefaultRoute +LLMNR -mDNS -DNSOverTLS DNSSEC=no/unsupported
Current DNS Server: 192.168.0.254
DNS Servers: 192.168.0.254 2a07:a8c0::bc:79c1 2a07:a8c1::bc:79c1
I already tried:
Code: Select all
/ip/dhcp-server/network/set dns-none=yes 0
I understand in simple words: if there aren't any dynamic servers, then I just pass the explicitely configured DNS server to the client. And I do have that explicit configuration of "dns-server". So I am confused why not even the DNS at 192.168.0.254 is passed to the clients anymore.
What I'd like to achieve is, that DHCP clients only get a single DNS: 192.168.0.254 (mikrotik router). I don't think I need to use FWD entries for these additional servers - that would be super odd.
Thanks for listening! I would be glad for any hint.