#petro1362 this is not exactly correct

by default home routers have a DHCP server that gives each client an IP address, a network gateway (the router IP) so clients know where to send ip packets when who they are trying to talk to is not on the same LAN network, and a DNS ip

usually this DNS IP is again the router itself so it can foward all requests to an external DNS server on the internet. It can also directly advertise DNS servers like 1.1.1.1 so the clients bypass the router handing DNS but they still use the router gateway to access the internet

keeping it simple, LAN = layer2, router / DNS / Internet / other LANS = layer3

so on a ipv4 network there are a couple address types

unicast, which goes to a single client, multicast which goes to a group of clients and broadcast which goes to all clients

the next part is from wiki

When an mDNS client needs to resolve a hostname, it sends an IP multicast query message that asks the host having that name to identify itself

That target machine then multicasts a message that includes its IP address. All machines in that subnet can then use that information to update their mDNS caches. Any host can relinquish its claim to a name by sending a response packet with a time to live (TTL) equal to zero.

so for example with that guy with his .local name not working after a reboot, the claim on the mDNS name from the previous state of his server had not expired yet. thus when it was rebooted, could not advertise itself as homeassistent.local as its old self was homeassistent.local

mDNS works over multicasts which works over the layer2 lan

so wouldn't simply rebooting the router clear or update that cache then?

no because every single client is cacheing this

the router is not involved, its a layer3 device

it does not care about layer2 opperations

ok, so his PC or whatever he was using to access it would have to be

yes, which give it a few mins, it will clear itself

ok, got it

now as for the real layer 1-7

now as for the real layer 1-7

1 is physical

2 is data, aka frames, aka uses MAC addresses to route

layer 3 is the network layer, thats when IP come into play along with routers

so like 192.168.4.4/24 can not talk to 192.168.5.4/24 without a router

the router would need to know about both networks

the client goes IDK who has this ip, its not in my network, let me send it to the router since that is my gateway to other network

Yeah for some reason I thought this was all handled by the router. I.e. devices would ask the router and the router had the only cache

consumer routers have a default forward all traffic not apart of the lan network out this internet interface

easy to think that, it was designed for Peer to peer

basically clients subscribe to this multicast ip

they listen and process anything that is published there

Sorry to jump in but this interests me. You can set individual host names in the ip reservation in opnsense. And I thought you could set a default host name for all hosts

I have always just used the ip but always see people using host names and never really understood

heh so in this case you are probably using the open sense device as your LAN network DNS server

After the convo this am, I was able to hit several services using hostname.local

The AM convo explained why I was able to access everything via .local even though I set things in their own domain.

so you can set records like make UNIFI go to 192.168.1.1 (thats how unifi devices do their auto discovery of the controller etc)

Honestly I don’t totally understand what I am doing. I have Pihole on a seperate host. Somehow, Pihole is doing dns but also forwarding to the opnsense in certain situations

ALways assumed that was Adguards DNS working it's magic

Yeah, same boat @cosmic spade

@cosmic spade you prob use the router ip as your dns and from the router get dns from pihole and from pihole from a dns server on the internet

it would be great if there was a way to map this shit

I should try and find the howto I followed on the internet. 🤣

I should try and find the howto I followed on the internet. 🤣

like "everyone on my network, give me your tables"

welcome to networking, there are hundreds of tools that try to map this shit, its all about discovery and documentation

Honestly, Pihole is blocking ads and my internet works so I was happy

and it can do dns rewrites do you can set your homeassistant domain to point to the local lan ip on your network when you are home to speed things up and be able to use valid TLS

I have to redo my network as I'm using one that I set up 10 years ago that's been 'updated'. It has a ton of parameters that are left over from the old setup that are no longer accessible from the UI. So I can only change them by modifying the files via CLI.

I have to redo my network as I'm using one that I set up 10 years ago that's been 'updated'. It has a ton of parameters that are left over from the old setup that are no longer accessible from the UI. So I can only change them by modifying the files via CLI.

how did I learn about networking? cisco netacad classes for CCNA 😛

it helps a lot for fixing... issues

like setting your own dns server to use on your dns server host or you may have issues

if you do dns rewrites and want to get TLS certs through the dns verification process, you better set dns manually on that container if you have issues

I've only gotten into networking in the past 7 years

I lost 4 hours troubleshooting cert-manager on my k8s system to this 😂

and by 'get into' i mean, followed a video, understood most of it, promptly forgot, here we are 7 years later

I went deep into it, learned the ISO OSI networking model and learned the layout of the dataframes, ip packets etc

static routing, dynamic routing

I thought I did pretty well, seeing that I follwed a video on a cisco router but I found the 'similiar' settings in my unifi setup

vlans are fun

firewalls more so

yah, they are, and I feel like I understand both of them

however this dns crap I do not

however this dns crap I do not

like only allow the IoT vlan to talk back under a established network connection one of your devices did from your lan

oh they use multicast... mdns reflector

oh they use multicast... mdns reflector

Yes, I think this is correct.

I think this

https://blog.ktz.me/using-pihole-with-pfsense-or-opnsense/

I need to get a opensense router so I can do BGP connections to my cluster and do direct routing to my containers which would remove a lot of limitations :p

And let me do things like actually load balance