Orbi Pro SRR60 hijacking DNS queries of wifi clients

---

owtluke wrote:

Hasn't anyone else seen this behavior? I have the log files to prove it!

---

There are several posts and comments on this in the community already, but related to Orbi Pro WiFi 6.

---

owtluke wrote:

This is directly observable in the pihole logs and the metrics for each individual client can be seen on the pihole dashboard. ... This is completely unacceptable and destroys the pihole metrics.

---

Correct. This has an impact on other systems in the data path, like a Pi-hole device. However, it's not the end of the world.

---

owtluke wrote:

The Orbi router is intercepting the DNS requests and resubmitting them itself on behalf of the client. ...  I could not find anywhere in the firmware to turn this off, so the only solution was to roll back the firmware to the previous version. Having done so, the problem is instantly fixed.

---

It's a new feature introduced silently to Orbi Pro and Orbi Pro WiFi 6 JohnC_V ... nothing to troubleshoot, see last part of this post. The community figured out almost everyhting going on 8-)

---

owtluke wrote:

...You are ignoring the DNS server value being sent to the clients and injecting yourself in the middle. This should at a very minimum be made transparent to users, and there should be a way to disable this behavior.

---

Look here for a possible explanation what might be going on. 

Having it source-IP transparent - and most would not recognize it's there. I'm not enough an iptables geek, so don't know if this could be changed easily.