# dnsmasq configuration for eSIM provisioning captive portal # Install: cp configs/dnsmasq.conf /etc/dnsmasq.d/esim-provisioning.conf # Only listen on the WiFi AP interface interface=wlan0 bind-interfaces # DHCP address pool for connecting clients dhcp-range=192.168.4.10,192.168.4.250,24h # DNS hijacking: return the AP IP for every domain query # This triggers the OS captive-portal detection and redirects all HTTP traffic. address=/#/192.168.4.1 # Do not forward DNS queries upstream (keep it fully local) no-resolv # DHCP lease file dhcp-leasefile=/var/lib/misc/dnsmasq.leases # Logging (disable in production to reduce I/O) log-queries log-dhcp