Setup for Client Site via UniFi Dream Machine - Advise on sites not blocking
Hello All,
We have a client where we have implemented the NextDNS solution to help block certain sites they request.
They have a UniFi Dream Machine, and we have set it up as per the instructions on GitHub. We can see traffic flowing now under logs and analytics. As we cannot install/configure on all end user devices, we have set the DHCP to give out the DNS servers as the ones on NextDNS, not local.
I can query a domain we have set to block, In this example *.crazygames.com but this does not block even though *.crazygames.com is in the Deny List. I have tried this with both the Block Page option enabled and disabled. If I run an NSLOOKUP of that domain, I can see it checks the DNS IP that we would expect for NextDNS.
?Does anyone have any further suggestions we can try before we have to try an alternative solution.
1 reply
-
If you have the CLI installed and correctly working, you should not set the DHCP to use NextDNS IPs directly (this will result in devices behind the router bypassing the CLI all together). Also if IPv4 is not linked then there will be no filtering for those devices accessing NextDNS directly.
I would advise you to setup the DHCP dns either blank (automatic) or the local IP address of the router itself.
Content aside
- 6 hrs agoLast active
- 1Replies
- 13Views
-
2
Following