Logs not recording queries on my computer / Settings change not applying
- REVOL7
- 9 mths ago
- 24replies
Queries from my computer do not appear anymore in logs, but queries from my android phone still appear
setup :
windows 11 desktop
DNS settings are still applied (as p*rn is blocked) but they are frozen (eg. if I allow p*rn in the settings it is still blocked).
Since 15/12/23 ~9:00PM (EUW)
24 replies
-
- revue_2_presse
- 9 mths ago
- Reported - view
Hello !
I'd like to report some similar behavior.
Quite confusing at first since the logs do not reflect - entirely - what is going
(some domains are blocked according to DNS-over-TLS responses even though they do not show up in logs as blocked).
Please find enclosed a domain example (which is not blocked by some setting, or i would not know which one since it doesn't show up in the logs at all unless i query the local resolver proxy with nslookup) - similar response with DNS-over-TLS for type AAAA.
Thank you for your support,-
- revue_2_presse
- 9 mths ago
- Reported - view
DNS-over-HTTPS not DNS-over-TLS
-
- REVOL7
- 9 mths ago
- Reported - view
seems related to https://help.nextdns.io/t/h7y3mmh/synchro-issue-between-nextdns-server
, @Christophe Yayon and myself are all living in France it seems, might be a coincidence tho.
-
- NextDNs
- 9 mths ago
- Reported - view
could be related. Do you still have the issue?
-
- REVOL7
- 9 mths ago
- Reported - view
thank you for your answer, I still have the issue, I might reinstall windows but I don't know if the cause of the issue is on my side.
To remind you of my situation and clarify :
1) my device is connected to NextDNS
2) Logs are broken, no queries appears except when I'm using qBitorrent or other very rare cases like when I execute the diag it displays "ipv6.test-ipv6.is"
3) filtering (parental control at least) is working but changes in the filtering do not apply to my device.
-
- REVOL7
- 9 mths ago
- Reported - view
it looks like the issue got fixed for me 10 mn ago, I don't know how
-
- revue_2_presse
- 9 mths ago
- Reported - view
Same here for me.
I can see the logs previously missing in some cases,
and toggling some domain filters now has the expected effects -
- NextDNs
- 9 mths ago
- Reported - view
we identified the issue and rolled out a fix
-
- REVOL7
- 9 mths ago
- Reported - view
thank you guys!
-
- REVOL7
- 7 mths ago
- Reported - view
this issue is back it seems
-
- revue_2_presse
- 7 mths ago
- Reported - view
@NextDNS
Unfortunately, I have to concur with this observation!Here is a diag file.
-
- NextDNs
- 7 mths ago
- Reported - view
does it still happen today? What do you get for https://test.nextdns.io
-
- revue_2_presse
- 7 mths ago
- Reported - view
Tests conducted on my site provides with satisfying results now!
(based on trying to resolve internalfb.com before blocking it successfully for instance)
Thanks! -
- REVOL7
- 7 mths ago
- Reported - view
Fixed for me !
-
- NextDNs
- 9 mths ago
- Reported - view
Please provide a https://nextdns.io/diag
-
- revue_2_presse
- 9 mths ago
- Reported - view
Hello!
Here is https://nextdns.io/diag/69cf4e80-9ced-11ee-a42d-31e2357dccc9 -
- revue_2_presse
- 9 mths ago
- Reported - view
Being puzzled by the `unconfigured ` status provided when running the diag command,
and in spite of having some `ok` status when accessing test.nextdns.io from a configured browser tab, i replaced the DNS addresses declared at the router level before running the diag command again: https://nextdns.io/diag/291c6710-9cf2-11ee-a051-edbacc10344b# from test.nextdns.io "status": "ok"
-
- NextDNs
- 9 mths ago
- Reported - view
do you still have the issue?
-
- revue_2_presse
- 9 mths ago
- Reported - view
I still do have this issue.
No logs matching the problematic domain queried from https://my.nextdns.io/****/logs when accessing some domains blocked from a browser tab with DNS-over-HTTPS configured with `Additional` field returned filled with
```\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 4096\n; EDE: 17 (Filtered): (Blocked by NextDNS)
```
when executing curl against the dns.nextdns.io ... endpoint (similar response than before attached)
even though the domain is clearly not blocked by some rules since i can access it via direct lookup.
In a nutshell, by removing the browser configuration, it's ok and as soon as DNS-over-HTTPS is involved, i can't seem to trust the logs, nor the filtering rules.
Also changing DoH in the browser allows me to access again the filtered domain immediately.
I've reinstalled nextdns app from the App Store, CLI multiple times. Nothing changed so far unfortunately.
Here is another diag if that may help:
https://nextdns.io/diag/cef9d1d0-9d2a-11ee-b179-3decc7f48952
Thank you for your support, -
- NextDNs
- 9 mths ago
- Reported - view
please try these:
curl 'https://dns.nextdns.io/<your profile id>?name=web.whatsapp.com&class=chaos'|jq dig chaos web.whatsapp.com @192.0.2.42
-
- revue_2_presse
- 9 mths ago
- Reported - view
`curl` command execution output:FYI, i had removed all lists https://my.nextdns.io/****/privacy at some point and it didn't bring the logs back....
`dig` command execution output:
image -
- revue_2_presse
- 9 mths ago
- Reported - view
Fyi, at the moment, the blocklist do not contain the incrimated list (no-facebook) per illustrated configuration.
-
- revue_2_presse
- 9 mths ago
- Reported - view
The encountered problem appears to be solved for me now
Thank you!
-
- revue_2_presse
- 7 mths ago
- Reported - view
Running this command again with internalfb.com for instance outputs
# curl 'https://dns.nextdns.io/***?name=internalfb.com&class=chaos { "Status": 0, "TC": false, "RD": true, "RA": true, "AD": false, "CD": false, "Question": [ { "name": "internalfb.com.", "type": 1 } ], "Answer": [ { "name": "internalfb.com.", "type": 1, "TTL": 300, "data": "0.0.0.0" } ], "Additional": [ { "name": ".", "type": 41, "TTL": 0, "data": "\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 4096\n; EDE: 17 (Filtered): (Blocked by NextDNS)" }, { "name": "proto.nextdns.io.", "type": 16, "TTL": 0, "data": "\"DOH\"" }, { "name": "server.nextdns.io.", "type": 16, "TTL": 0, "data": "\"virtua-par-1\"" }, { "name": "profile.nextdns.io.", "type": 16, "TTL": 0, "data": "\"****\"" }, { "name": "client.nextdns.io.", "type": 16, "TTL": 0, "data": "\"****\"" }, { "name": "client-name.nextdns.io.", "type": 16, "TTL": 0, "data": "\"unknown-doh\"" }, { "name": "lists.nextdns.io.", "type": 16, "TTL": 0, "data": "\"blocklist:hagezi-multi-ultimate\" \"blocklist:hagezi-multi-pro-plus\"" }, { "name": "smart-ecs.nextdns.io.", "type": 16, "TTL": 0, "data": "\"not sent\"" } ] }
Now trying to disable the blocking list (even though, i have manually whitelisted `*.internalfb.com` before without being able to access the domain from a browser configure resolving domains via DNS-over-HTTPS)
Content aside
-
1
Likes
- 7 mths agoLast active
- 24Replies
- 444Views
-
6
Following