Setup DNSmasq on Asuswrt-Merlin Router configuration

[Guest]

Hey folks,

I am trying to setup DNSmasq on my Asus AC66U with Asuswrt-Merlin (router 2).

I am stuck with an Easybox modem/router combo (router 1) which connects LAN to WAN to router 2. Router 1 should only serve as modem while all my devices should connect to router 2. I want to setup dnsmasq on router 2. I SSHed a working dnsmasq script (that uses Tunlrs DNS for specific sites only) to the jffs partition but I don't know how to configure my router 2. In the WAN settings do I need to set a static IP or dynamic IP and do I have to provide a DNS server? Also, I am not sure if I have to disable the DHCP server in router 2.

I would appreciate it if one of you could guide me through the process.

Cheers,
Kummerpaule

 

[eibgrad]

You need to determine if the Easybox combo modem+router can be reconfigured for bridge mode. Some combo devices can, some can’t. But if it can, that demotes it to just a modem, and the public IP will be passed to the WAN of your router. If it’s a DSL device, you may need to perform the PPPoE connection (w/ username/password) on the router’s WAN as well.

The other approach (assuming you can’t use bridge mode) is to chain the routers by patching the second router’s WAN to the Easybox. You just need to make sure both routers use DIFFERENT networks (e.g., 192.168.1.x and 192.168.2.x) or else routing won’t work properly.

The downside of chaining routers is that you’re now behind two NAT firewalls, which can cause problems w/ remote access into your LAN (should you need it), or for some apps on your LAN. But for most things, it will work just fine.

As far as DNSMasq, DHCP, DNS servers, etc., there’s nothing particularly different here regardless whether you use bridge mode or chain routers. Your own ASUS router is always going to use a dynamic IP on the WAN, will always have its own DHCP server, it’s own DNS settings, etc.

The only reason you might have issues w/ DNSMasq, DHCP, DNS, and the rest, is if you wanted to use the ASUS as only a wireless AP. If you can’t configure the Easybox for bridge mode, and want to eliminate the double NAT, you could configure your own router as only wireless AP and connect it to the Easybox, LAN to LAN. Now you have to disable the DHCP server on the ASUS so as not to conflict w/ the DHCP server on the Easybox. You could probably still use the DNS server of the ASUS, but you’ll have to configure the Easybox w/ that DNS server. Also, make sure to give the ASUS an ip address in the same network as the Easybox.

So a lot of options here depending on how you want/need to deal w/ the Easybox.

 

[Guest]

Hey eibgrad, first of all thank you for your very detailed answer and all the suggested possibilities!!

Unfortunately my degree of freedom with the setup is rather minimal. I have to use the Easybox router/modem combo because I need it as a modem and also to connect my phone/ISDN. Plus, I don't get the user/pw from my ISP.
The whole idea about the second router (Asus) was to have the option to use DNSmasq as a DHCP server and DNS forwarder to use Netflix in Germany via Tunlr. There is a script that makes DNSmasq to connect only to specific sites via Tunlr.
So basically I have figured everything out (installed the script, connected the 2nd router to my modem) except how to enable DNSmasq on my Asus AC66U (Asuswrt-Merlin). I guess that I have to change the settings in the gui. If I select Dynamic IP in WAN settings I can't set a DNS server but I also don't know if I have to set a DNS server at all. If I select Static IP I can add a DNS server (e.g. Tunlr) but than all sites are redirected through Tunlr. Also I have two other options: 1. Disable the DHCP server (active in standard settings) and 2. Forward to DNS server automatically (standard setting) or manually and I don't know if I have to change these for DNSmasq to work as DHCP/DNS server.

I hope I didn't confuse you too much. I am really new to all this network terms and settings. Hopefully you can help me sort it out...

Thanks again!!