1

Lots of totally unidentified devices

I installed NextDNS on my Unifi USG4-Pro router, and it seems to be working for at least some devices. "nextdns discovered" shows all the devices I'd expect.

However, most of my DNS queries are still from "Unidentified Devices". Downloading the log, the devices don't have anything in device_local_ip, client_name, device_name or device_id - so I have no way of telling which device is actually making the query.

Any idea what could be wrong? Thanks!

6 replies

null
    • bobsmith
    • 2 yrs ago
    • Reported - view

    read setup guides twice please

    DNS-over-TLS

    Prepend the name to the provided domain (the name should only contain a-z, A-Z, 0-9 and -). Use -- for spaces.

    For "John Router", you would use John--Router-d4b896.dns.nextdns.io as your DNS-over-TLS endpoint.

    DNS-over-HTTPS

    Append the name to the provided URL (the name should be URL encoded).

    For "John's Firefox", you would use https://dns.nextdns.io/d4b896/John's%20Firefox as your DNS-over-HTTPS endpoint.

    • Angelo_Restrepo
    • 1 yr ago
    • Reported - view

    The only one I added was the opnsense router put a nick name and then the Dns-over-TLS that appears to be working. How do I correct the unidentified got 19,498 out of 449,890?

      • in_addr_arpa
      • 1 yr ago
      • Reported - view

      Angelo Restrepo Clear your NextDNS logs and start them over :) You can't roll back time and add data to historical events where the information was not initially provided in the requests (missing when those requests were made).

    • newbie_nextdns
    • 1 yr ago
    • Reported - view

    I believe the point here when are used router, access point and so on to make this identification, because there isn`t any mention to add for example a description for those devices inserting directly to router ( DNS 0ver TLS or HTTPS ).

    So, most of time we will only look via public IP that those devices are using.

    • Mike_Brust
    • 1 yr ago
    • Reported - view

    most likely that is the USG4 itself. I have a UDM running with NextDNS.

    Since I moved the WAN DNS entries also to NextDNS, the encrypted DNS hit rate went down and the number of "unidentified clients" went through the roof

    • newbie_nextdns
    • 1 yr ago
    • Reported - view

    Like the same for here.

    Like when "GUEST" user join in your WIFI and cannot verify who make some query and how to handle those devices in respect which access made or block via DNS query.

    Not sure if could be possible to get those logs via raw to identify those devices and make compare with logs of your environment between IP, time, etc.

Login to reply

Content aside

  • 1 Likes
  • 1 yr agoLast active
  • 6Replies
  • 837Views
  • 7 Following