Most common problem with NextDNS

TheAliDev
9 mths ago
14replies

The problem is with block page

Because of that page most banking apps don't work

Even some of old devices crush

Well

If you have discovered any main failure you don't see on NextDNS logs

Disable blockpage

I am suggesting you the best

Setup

- bithip
- 9 mths ago
- Reported - view
Find this Block Page settings under:

NextDNS Dashboard/Settings/Block Page.
- TheAliDev
  
  9 mths ago
  
  Reported - view
  i know bro
- bithip
  
  9 mths ago
  
  Reported - view
  That information is for someone who might land on this thread in the future and not be able to figure out where the NextDNS Block Page Settings configuration is.
  
  I am familiar with NextDNS, but it took me a few minutes to locate the Block Page settings.
  
  With the config location above, NextDNS users could save a lot of time.
- TheAliDev
  
  9 mths ago
  
  Reported - view
  ok
  
  No problem
- Wayne.1
  
  8 mths ago
  
  Reported - view
  I sure appreciate your help because I'm lost how come I can't use this DNS server with YouTube and some of my searches I use with ducked up go aren't coming up either and I looked at my block page and it doesn't show that I blocked YouTube
- Wayne.1
  
  8 mths ago
  
  Reported - view
  I meant duckduckgo
- NextDNs
- 9 mths ago
- Reported - view
The block page is only served on blocked domains. If you have blocked domain in your logs, disabling the block page will be no-op, so it is hard to see how disabling would fix anything.
- bithip
  
  9 mths ago
  
  Reported - view
  My best guess is that because enabling the "Block Page" feature prompts for NextDNS CA certificate installation for blocked dns query links inside the app, some apps might find it confusing to continue with normal operation.
- TheAliDev
  
  8 mths ago
  
  Reported - view
  i know blockpage is great
  
  But it confuses many apps even devices of some vendors like Infinix by redirecting blocked queries to blockpage
  
  It even give self sign ssl that apps won't understand
- Wayne.1
  
  8 mths ago
  
  Reported - view
  are you suggesting that I reinstall my certificate
- TheAliDev
- 8 mths ago
- Reported - view
I never thinked that NextDNS staff will reply to this forum

I know why

Because your blockpage is good feature

But there is no need for it i think so

Even this forum grabbed enough audience that doesn't like their blockpage

Can you do something about your self signed certificate

You can even use let's encrypted or any other public ssl

Your ssl even allows unencrypted trackers to watch us

I really can't explain situation here
- NextDNs
  
  8 mths ago
  
  Reported - view
  you can’t use a public cert to generate certificates for domains you don’t own, which is what the blockpage feature is about. There is no way around a root CA for this feature unfortunately.
  
  I don’t understand your claim about unencrypted trackers.
- TheAliDev
  
  8 mths ago
  
  Reported - view
  this is custom self signed certificate
  
  And no apps trust it
  
  Unencrypted dns not means your certificate is not good
  
  It's just self signed certificate and i need to import it on my every device
- NextDNs
  
  8 mths ago
  
  Reported - view
  apps will trust it if the root CA is in the OS’ trust store, unless they pin all the certs of the domains they try to reach, which is never the case with ad SDKs.
  
  Even if they wouldn’t trust it, those custom certs are only meant to show a block page on https sites in a browser. Apps not trusting it on blocked domains would still fail to load the URLs on such domains, which is what we want.
  
  Also it is an opt-in feature. We even have a warning when you are enabling the feature. If you don’t like it, just don’t use it.

Content aside

2 Likes
8 mths agoLast active
14Replies
1117Views
5 Following

Most common problem with NextDNS

14 replies

Content aside

Home

Tags