0

Unifi DoH No Profile

I keep getting the message:

This device is using NextDNS with no profile.

Make sure you use the DNS-over-HTTPS endpoint shown below.

I am using a USG-Fiber with CyberSecure and trying to generate a stamp for DoH using https://dnscrypt.info/stamps/

I have left DNSSEC checked, unchecked the other two boxes. I've used the endpoint shown in the dashboard (https://dns.nextdns.io/<redacted>) as the hostname, left the default path of /dns-query

I've tried unchecking DNSSEC, I've tried removing the Path, I dont have any idea what on earth this means under the setup guide:

DNS-over-HTTPS

Append the name to the provided URL (the name should be URL encoded).

For "John's Firefox", you would use https://dns.nextdns.io/cd5ba9/John's%20Firefox as your DNS-over-HTTPS endpoint.

What name? Name of the profile? Because I've appended that to the hostname, I've put it in the Path, neither makes a difference...

Nothing I do seems to connect it to a profile.

3 replies

null
    • Dyanmike
    • 8 days ago
    • Reported - view

    I had a similar issue and found that once I removed the content filter via Cybersecure>Content Filter in the Unifi router, it started working. It has something to do with the new Unifi Network App update from last week.

    • losnad
    • 8 days ago
    • Reported - view

    What name? The name of the device... 

    DNSSEC should be disabled. It's done by NextDNS. 

    https://help.nextdns.io/t/60halgj?r=x2hal2j#x2hal2j

    • Mike_V
    • 4 days ago
    • Reported - view

    There's no need for you to generate your own stamp, NextDNS has already done that for you. If you look under the Router heading on the Setup page for your account, there's a DNSCrypt section there that has the stamp already provided. Just copy/paste the server name (NextDNS-yourid) and stamp from the NextDNS page into the Encrypted DNS settings in Unifi and you should be good to go. 

Content aside

  • 4 days agoLast active
  • 3Replies
  • 55Views
  • 3 Following