Logs not recording queries on my computer / Settings change not applying
Queries from my computer do not appear anymore in logs, but queries from my android phone still appear
setup :
windows 11 desktop
DNS settings are still applied (as p*rn is blocked) but they are frozen (eg. if I allow p*rn in the settings it is still blocked).
Since 15/12/23 ~9:00PM (EUW)
24 replies
-
Hello !
I'd like to report some similar behavior.
Quite confusing at first since the logs do not reflect - entirely - what is going
(some domains are blocked according to DNS-over-TLS responses even though they do not show up in logs as blocked).
Please find enclosed a domain example (which is not blocked by some setting, or i would not know which one since it doesn't show up in the logs at all unless i query the local resolver proxy with nslookup) - similar response with DNS-over-TLS for type AAAA.
Thank you for your support,
-
DNS-over-HTTPS not DNS-over-TLS
-
seems related to https://help.nextdns.io/t/h7y3mmh/synchro-issue-between-nextdns-server
, @Christophe Yayon and myself are all living in France it seems, might be a coincidence tho.
-
could be related. Do you still have the issue?
-
thank you for your answer, I still have the issue, I might reinstall windows but I don't know if the cause of the issue is on my side.
To remind you of my situation and clarify :
1) my device is connected to NextDNS
2) Logs are broken, no queries appears except when I'm using qBitorrent or other very rare cases like when I execute the diag it displays "ipv6.test-ipv6.is"
3) filtering (parental control at least) is working but changes in the filtering do not apply to my device.
-
it looks like the issue got fixed for me 10 mn ago, I don't know how
-
Same here for me.
I can see the logs previously missing in some cases,
and toggling some domain filters now has the expected effects
-
we identified the issue and rolled out a fix
-
thank you guys!
-
this issue is back it seems
-
@NextDNS
Unfortunately, I have to concur with this observation!Here is a diag file.
-
does it still happen today? What do you get for https://test.nextdns.io
-
Tests conducted on my site provides with satisfying results now!
(based on trying to resolve internalfb.com before blocking it successfully for instance)
Thanks!
-
Fixed for me !
-
-
Please provide a https://nextdns.io/diag
-
Hello!
Here is https://nextdns.io/diag/69cf4e80-9ced-11ee-a42d-31e2357dccc9 -
Being puzzled by the `unconfigured ` status provided when running the diag command,
and in spite of having some `ok` status when accessing test.nextdns.io from a configured browser tab, i replaced the DNS addresses declared at the router level before running the diag command again: https://nextdns.io/diag/291c6710-9cf2-11ee-a051-edbacc10344b# from test.nextdns.io "status": "ok" -
do you still have the issue?
-
I still do have this issue.
No logs matching the problematic domain queried from https://my.nextdns.io/****/logs when accessing some domains blocked from a browser tab with DNS-over-HTTPS configured with `Additional` field returned filled with
```\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 4096\n; EDE: 17 (Filtered): (Blocked by NextDNS)
```
when executing curl against the dns.nextdns.io ... endpoint (similar response than before attached)
even though the domain is clearly not blocked by some rules since i can access it via direct lookup.
In a nutshell, by removing the browser configuration, it's ok and as soon as DNS-over-HTTPS is involved, i can't seem to trust the logs, nor the filtering rules.
Also changing DoH in the browser allows me to access again the filtered domain immediately.
I've reinstalled nextdns app from the App Store, CLI multiple times. Nothing changed so far unfortunately.
Here is another diag if that may help:
https://nextdns.io/diag/cef9d1d0-9d2a-11ee-b179-3decc7f48952
Thank you for your support,
-
please try these:
curl 'https://dns.nextdns.io/<your profile id>?name=web.whatsapp.com&class=chaos'|jq dig chaos web.whatsapp.com @192.0.2.42 -
`curl` command execution output:
FYI, i had removed all lists https://my.nextdns.io/****/privacy at some point and it didn't bring the logs back....
`dig` command execution output:
image -
Fyi, at the moment, the blocklist do not contain the incrimated list (no-facebook) per illustrated configuration.
-
The encountered problem appears to be solved for me now
Thank you!
-
Running this command again with internalfb.com for instance outputs
# curl 'https://dns.nextdns.io/***?name=internalfb.com&class=chaos { "Status": 0, "TC": false, "RD": true, "RA": true, "AD": false, "CD": false, "Question": [ { "name": "internalfb.com.", "type": 1 } ], "Answer": [ { "name": "internalfb.com.", "type": 1, "TTL": 300, "data": "0.0.0.0" } ], "Additional": [ { "name": ".", "type": 41, "TTL": 0, "data": "\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 4096\n; EDE: 17 (Filtered): (Blocked by NextDNS)" }, { "name": "proto.nextdns.io.", "type": 16, "TTL": 0, "data": "\"DOH\"" }, { "name": "server.nextdns.io.", "type": 16, "TTL": 0, "data": "\"virtua-par-1\"" }, { "name": "profile.nextdns.io.", "type": 16, "TTL": 0, "data": "\"****\"" }, { "name": "client.nextdns.io.", "type": 16, "TTL": 0, "data": "\"****\"" }, { "name": "client-name.nextdns.io.", "type": 16, "TTL": 0, "data": "\"unknown-doh\"" }, { "name": "lists.nextdns.io.", "type": 16, "TTL": 0, "data": "\"blocklist:hagezi-multi-ultimate\" \"blocklist:hagezi-multi-pro-plus\"" }, { "name": "smart-ecs.nextdns.io.", "type": 16, "TTL": 0, "data": "\"not sent\"" } ] }Now trying to disable the blocking list (even though, i have manually whitelisted `*.internalfb.com` before without being able to access the domain from a browser configure resolving domains via DNS-over-HTTPS)
-
Content aside
-
1
Likes
- 8 mths agoLast active
- 24Replies
- 472Views
-
6
Following