0

NextDNS authored on DoH while blocking DoH

I try to bypass my nextDNS protection to test it, and DoH with cloudfare or anyone failed, but it's success when using DoH with nextDNS without configuring with my ID configuration.

 

I saw that on firefox, nextDNS servers with DoH are located under firefox.dns.nextdns.io that redirect to steering.nextdns.io that is real server DoH.

 

So i tried to block in the black list, (only steering.nextdns.io), and what a surprised when i saw in the log that it has no effects at all because steering.nextdns.io was still able to be resolve.

 

steering.nextdns.io has different IP that nextdns.io usually use.

 

Can someone explain me why nextDNS can't block some subdomains such as steering.nextdns.io ?

 

Bests.

12replies Oldest first
  • Oldest first
  • Newest first
  • Active threads
  • Popular
  • Romain Cointepas do you have a response to that ?

    Like
    • S0me6uy If you add "dns.nextdns.io" to your denylist, it should block NextDNS in Firefox (as long as you didn't manually set the bootstrap IP in Firefox settings).

      Like 1
  • i put it in the blackList, but it still available...

    Like
    • S0me6uy Do you see dns.nextdns.io in your NextDNS logs?

      Like
      • S0me6uy
      • S0me6uy
      • 3 mths ago
      • Reported - view

      Romain Cointepas yes i do, but not blocked while it should be so, i don't understand well.

      Like
  • yes i do, but not blocked while it should be so, i don't understand well.

    Like
  • so ? do you find something interesting to solve that ?

    Like
    • S0me6uy it’s a known issue. It’s in our roadmap to fix it.

      Like
      • S0me6uy
      • S0me6uy
      • 3 mths ago
      • Reported - view

      Olivier Poitrey Ok, copy that.

       

      Amazing job anyway

      Like
      • S0me6uy
      • S0me6uy
      • 1 mth ago
      • Reported - view

      Olivier Poitrey Hello,

      what is the status about this issue ?

      Like
    • S0me6uy it's been fix a long time ago.

      Like 1
      • S0me6uy
      • S0me6uy
      • 1 mth ago
      • Reported - view

      Olivier Poitrey 

      Ho, i'm surprised because i've still same comportment as before. After there are some captures to show you that it's still working now so ...

      Maybe i made something wrong on my admin panel but blocking evasive method is well enable.

      Like
Like Follow
  • 1 mth agoLast active
  • 12Replies
  • 171Views
  • 3 Following