Update incident: DHCP DNS fix for device connectivity
This commit is contained in:
49
docs/incidents/2026-01-25-adblock-debug-in-progress.md
Normal file
49
docs/incidents/2026-01-25-adblock-debug-in-progress.md
Normal file
@@ -0,0 +1,49 @@
|
|||||||
|
# Debug Session: AdBlock Not Working + Device Connectivity
|
||||||
|
|
||||||
|
**Date:** 2026-01-25 13:20
|
||||||
|
**Status:** IN PROGRESS
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
|
## Initial Findings
|
||||||
|
|
||||||
|
### 1. AdGuardHome-Sync Container
|
||||||
|
- **Origin:** 192.168.31.1:80 (MikroTik AdGuard)
|
||||||
|
- **Replica:** 192.168.31.4:3000 (Unraid AdGuard)
|
||||||
|
- **Sync interval:** Every 30 minutes
|
||||||
|
- **Status:** Failing since 10:00 with "no route to host"
|
||||||
|
|
||||||
|
**Error:**
|
||||||
|
```
|
||||||
|
2026-01-25T10:00:01.349Z ERROR sync Error getting origin status
|
||||||
|
{"from": "192.168.31.1:80", "error": "dial tcp 192.168.31.1:80: connect: no route to host"}
|
||||||
|
```
|
||||||
|
|
||||||
|
### 2. AdGuard Filtering Configuration
|
||||||
|
- **Filters enabled:** 1 (AdGuard DNS filter only)
|
||||||
|
- **AdAway blocklist:** DISABLED
|
||||||
|
- **protection_enabled:** true
|
||||||
|
- **filtering_enabled:** true (global)
|
||||||
|
- **Multiple client profiles have filtering_enabled: false**
|
||||||
|
|
||||||
|
### 3. Architecture Discovery
|
||||||
|
There are TWO AdGuard instances:
|
||||||
|
1. **MikroTik AdGuard** - 192.168.31.1:80 (origin/master)
|
||||||
|
2. **Unraid AdGuard** - 192.168.31.4:3000 (replica)
|
||||||
|
|
||||||
|
Sync copies config from MikroTik → Unraid
|
||||||
|
|
||||||
|
### 4. Current Issue: Devices Have No Internet
|
||||||
|
- LG TV showing no connection
|
||||||
|
- Likely cause: DNS changes not propagated to DHCP clients
|
||||||
|
- Devices may have cached old DNS or DHCP lease hasn't renewed
|
||||||
|
|
||||||
|
## To Investigate
|
||||||
|
- [ ] Check MikroTik DHCP DNS settings
|
||||||
|
- [ ] Check if MikroTik AdGuard is running (container on MikroTik?)
|
||||||
|
- [ ] Verify DHCP leases are pushing correct DNS
|
||||||
|
- [ ] Check if NAT rules are redirecting properly
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
|
*Debug session paused - device connectivity issue reported*
|
||||||
@@ -86,3 +86,42 @@ After fix:
|
|||||||
---
|
---
|
||||||
|
|
||||||
*Incident logged by Claude Code via Tailscale connection*
|
*Incident logged by Claude Code via Tailscale connection*
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
|
## Additional Issue: Devices No Internet (13:25)
|
||||||
|
|
||||||
|
### Symptom
|
||||||
|
- LG TV and other devices showing no internet connection
|
||||||
|
- DNS changes not reaching devices
|
||||||
|
|
||||||
|
### Root Cause
|
||||||
|
DHCP was pushing as DNS to clients, but MikroTik NAT rules redirect all port 53 traffic to AdGuard. This created a mismatch.
|
||||||
|
|
||||||
|
**Before:**
|
||||||
|
```
|
||||||
|
DHCP DNS-SERVER: 8.8.8.8
|
||||||
|
```
|
||||||
|
|
||||||
|
### Fix
|
||||||
|
Changed DHCP to push MikroTik as DNS (which forwards to AdGuard):
|
||||||
|
|
||||||
|
```bash
|
||||||
|
/ip dhcp-server network set 0 dns-server=192.168.31.1
|
||||||
|
```
|
||||||
|
|
||||||
|
**After:**
|
||||||
|
```
|
||||||
|
DHCP DNS-SERVER: 192.168.31.1
|
||||||
|
```
|
||||||
|
|
||||||
|
### DNS Flow (Corrected)
|
||||||
|
```
|
||||||
|
Device → 192.168.31.1 (MikroTik DNS) → 192.168.31.4 (AdGuard) → 8.8.8.8 (upstream)
|
||||||
|
```
|
||||||
|
|
||||||
|
### Device Recovery
|
||||||
|
Devices need to renew DHCP lease to get new DNS:
|
||||||
|
- Wait for lease expiry (default 10 min)
|
||||||
|
- Reconnect to WiFi
|
||||||
|
- Reboot device
|
||||||
|
|||||||
Reference in New Issue
Block a user