0

NextDNS authored on DoH while blocking DoH

I try to bypass my nextDNS protection to test it, and DoH with cloudfare or anyone failed, but it's success when using DoH with nextDNS without configuring with my ID configuration.

 

I saw that on firefox, nextDNS servers with DoH are located under firefox.dns.nextdns.io that redirect to steering.nextdns.io that is real server DoH.

 

So i tried to block in the black list, (only steering.nextdns.io), and what a surprised when i saw in the log that it has no effects at all because steering.nextdns.io was still able to be resolve.

 

steering.nextdns.io has different IP that nextdns.io usually use.

 

Can someone explain me why nextDNS can't block some subdomains such as steering.nextdns.io ?

 

Bests.

12 replies

null
    • S0me6uy
    • 3 yrs ago
    • Reported - view

    Romain Cointepas do you have a response to that ?

      • romain
      • 3 yrs ago
      • Reported - view

      S0me6uy If you add "dns.nextdns.io" to your denylist, it should block NextDNS in Firefox (as long as you didn't manually set the bootstrap IP in Firefox settings).

    • S0me6uy
    • 3 yrs ago
    • Reported - view

    i put it in the blackList, but it still available...

      • romain
      • 3 yrs ago
      • Reported - view

      S0me6uy Do you see dns.nextdns.io in your NextDNS logs?

      • S0me6uy
      • 3 yrs ago
      • Reported - view

      Romain Cointepas yes i do, but not blocked while it should be so, i don't understand well.

    • S0me6uy
    • 3 yrs ago
    • Reported - view

    yes i do, but not blocked while it should be so, i don't understand well.

    • S0me6uy
    • 3 yrs ago
    • Reported - view

    so ? do you find something interesting to solve that ?

      • olivier
      • 3 yrs ago
      • Reported - view

      S0me6uy it’s a known issue. It’s in our roadmap to fix it.

      • S0me6uy
      • 3 yrs ago
      • Reported - view

      Olivier Poitrey Ok, copy that.

       

      Amazing job anyway

      • S0me6uy
      • 3 yrs ago
      • Reported - view

      Olivier Poitrey Hello,

      what is the status about this issue ?

      • olivier
      • 3 yrs ago
      • Reported - view

      S0me6uy it's been fix a long time ago.

      • S0me6uy
      • 3 yrs ago
      • Reported - view

      Olivier Poitrey 

      Ho, i'm surprised because i've still same comportment as before. After there are some captures to show you that it's still working now so ...

      Maybe i made something wrong on my admin panel but blocking evasive method is well enable.

Content aside

  • 3 yrs agoLast active
  • 12Replies
  • 516Views
  • 3 Following