0

DNS-Over-HTTPS and iOS App/Profile Not Connecting

Starting earlier today, I began having issues with devices connecting to NextDNS via browser (DNS-Over-HTTPS) or using the iOS app/profile. Windows clients using the agent connect just fine, but I've had to remove the NextDNS configurations for all other devices. I have not worked out exactly what is causing the non-Windows clients to suddenly start failing to connect. I've also tested with an iPhone while on my mobile network only and had the same issues getting it connected with the iOS app or configuring via the NextDNS profile.

5 replies

null
    • olivier
    • 3 yrs ago
    • Reported - view

    What do you get for https://dns.nextdns.io/?name=dns.nextdns.io&type=HTTPS from the ios device? Are they on the same network?

      • Patrick_Wright
      • 3 yrs ago
      • Reported - view

      Olivier Poitrey When I enable NextDNS on the device, I'm not able to get to the provided URL or anything else. The connection times out. If I disable NextDNS, I do get some configuration output back, which I'll post separately in another reply.

      • Patrick_Wright
      • 3 yrs ago
      • Reported - view

      Olivier Poitrey , below is what I receive back with NextDNS disabled: 

      {"Status":0,"TC":false,"RD":true,"RA":true,"AD":true,"CD":false,"Question":[{"name":"dns.nextdns.io.","type":65}],"Answer":[{"name":"dns.nextdns.io.","type":5,"TTL":122,"data":"steering.nextdns.io."},{"name":"steering.nextdns.io.","type":65,"TTL":60,"data":"1 dns1.steering.nextdns.io. alpn=\"h2\" ipv4hint=\"216.230.232.29\" ipv6hint=\"2605:380:58:554::1\""},{"name":"steering.nextdns.io.","type":65,"TTL":60,"data":"2 dns2.steering.nextdns.io. alpn=\"h2\" ipv4hint=\"188.172.251.1\" ipv6hint=\"\u003cnil\u003e\""},{"name":"steering.nextdns.io.","type":65,"TTL":60,"data":"3 anycast.dns1.nextdns.io. alpn=\"h2\" ipv4hint=\"45.90.28.0\" ipv6hint=\"2a07:a8c0::\""},{"name":"steering.nextdns.io.","type":65,"TTL":60,"data":"4 anycast.dns2.nextdns.io. alpn=\"h2\" ipv4hint=\"45.90.30.0\" ipv6hint=\"2a07:a8c1::\""}],"Additional":[{"name":".","type":41,"TTL":0,"data":"\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags: ; udp: 1220"}]}
      • Patrick_Wright
      • 3 yrs ago
      • Reported - view

      Olivier Poitrey Sorry, I didn't answer the second question. Yes, the iOS device and my Windows systems (running the NextDNS agent) are on the same network.

      • Patrick_Wright
      • 3 yrs ago
      • Reported - view

      Olivier Poitrey after tinkering around with settings on my side, I believe I found the cause of the issue. XFi “Advanced Security” on my ISP router was blocking some nextdns.io subdomains. After disabling this feature, NextDNS connects with no issues. It appears that the Windows agent doesn’t get blocked; only the iOS app and browser DNS over HTTPS.
       

      I did have issues with AV detecting the Windows as malware (I reversed that), so suspect that xFinity might be blocking the domains for a similar reason that AV doesn’t like it. 
       

      All should be fixed now! Thank you for the quick responses!

Login to reply

Content aside

  • 3 yrs agoLast active
  • 5Replies
  • 429Views
  • 2 Following