Unidentified devices
Hello there,
I have configured almost all devices from my home network but it seems it's not everything configured as it should be. I am receiving a lot of queries from "unidentified devices". I can see my devices on the list but not my Synololgy NAS and Chromecast devices.
How can I identify these two as well? I am also using one profile because everything goes through router.
Also here are some results from testing:
"status": "ok",
"protocol": "DOT",
"anycast": true,
"clientName": "unknown-dot",
29 replies
-
If I understand correctly, you're using a single NextDNS profile through your router, which means any device getting DNS info from the router won't be individually identified. You can't use the router option and have clients identify themselves at the same time, since the router is seen as the only client. However, you can use the NextDNS CLI on a router or a server within your LAN to help identify devices separately.
-
Installing NextDNS CLI got an error message.
Don't know how to solve this either and don't know if I have curl on my router Asus ax4200.
-
The CLI only supports certain platforms, and ASUSWRT is not one of them. However, it does support AsusWRT-Merlin, which is a third-party firmware for ASUS routers that extends the stock ASUSWRT. Unfortunately, the model you have (Asus ax4200) is not supported.
Like mentioned in the setup page you have a few more ways to report the client information, maybe look into those, or go the Raspberry Pi route like I did. -
thanks again for your support!
So, if understand correctly I need to change my firmware to AsusWRT-Merlin or to buy RaspberryPi?
-
In the mean time I found an information that is not possible to use AsusWRT-Merlin on my AX4200 model.
https://www.snbforums.com/threads/asus-merlin-on-tuf-gaming-ax4200.85429/#post-848033
Don't know if I should try with OpenWRT?
-
thanks again and forgot to mention this as well. If I test other devices I still receive DOT. Does that means that those are using encrypted connection?
-
Hi, I've been helping you out on the subreddit, I'm also on here too.
I have a feeling that you have set the DNS IPs on the WAN settings in the router. Could you please show the DNS section on the router (remember to obscure identifiable info).
-
thanks for your response and you are right! I have set the DNS IP's in the WAN section.
Even if I use test.nextdns.io on my SmartTV I am receiving DoT results and yet I have a lot of "unidentified devices" with 0% encryption.
-
thanks for your response and you are right! I have set the DNS IP's in the WAN section.
Even if I use test page on my SmartTV I am receiving DoT results and yet I have a lot of "unidentified devices" with 0% encryption.
-
Yes, if you're testing other devices and still seeing DOT (DNS over TLS), that means those devices are using an encrypted connection for DNS queries.
-
But under analytics says 0% encrypted connections. Should I do anything?
-
If you really want to get rid of these unidentified, it is simple. Just remove the NextDNS IPs from the WAN setting at the top (this DNS is primarily used for time checks and checking connectivity to the internet by the router itself). All your other devices behind the router (that aren't set locally) will use the DoT setup.
-
Sorry I don't understand and now I'm confused, because if I remove those IP settings from NextDNS inside "WAN DNS Settings", what DNS I am going to use because other devices does not have those IP's, only router has.
Second scenario is If I use those IP's addresses from NextDNS on those devices (but I'm not able to use these IP's on SmartTV with Vidaa OS, smart box, nor Chromecast, nor my AirConditioner or washing machines and all these devices has their apps on PlayStore). Even my laptops receive DoH instead of DoT if I use these IP's on them.
What should I do? I am reading the Analytics tab on NextDNS page and he says that I have 0% encryption... and now I'm confused, what is right, what is wrong... or where am I missing something!?
-
You can use any public DNS IPs like Google, quad9, OpenDNS, etc.
Or if you want to keep to NextDNS but not show up on your profile, use the main Anycast IPs of 45.90.28.0 & 45.90.30.0
Since you’re confused I would recommend going with the second one, with just changing the IPs to end with “.0” rather than whatever number they end with for you now. Then check the analytics after 30mins (filtering the timespan to 30 minutes) and hopefully the unidentified unencrypted entries will be gone.
-
I am using payed version of NextDNS and I want to use NextDNS. Why would use other DNS addresses? I have searched that NextDNS offers great protection and I want to use their DNS addresses. But I don't know how to identify all devices inside my network, such as SmartTV, smartBox, Chromecast, etc...
I assume that 45.90.28.0 & 45.90.30.0 are free addresses, right?
-
tried with 45.90.28.0 & 45.90.30.0 and again 0% encryption and I left these addresses for almost 3 hours.
-
So unidentified is still going on? You must have used the DNS IPs somewhere else, in a different device. What domains are showing up under the unidentified filter? (if not wanting to share in a public forum, maybe try a PM to me? You don't have to of course but it may help find this other device)
Oh, just for your info, all the devices using your router will not be individually identifiable, they will be all lumped into your router name. This is because they all use the DoT from the router, there's no option to add names for each device within the router.
-
yes, unidentified still remains. No, I haven't used my DNS settings on any other place than my router for my home network. The most common name under unidentified filter is trendmicro since I have Asus router and Microsoft.
So what do you suggest? Is it better to have DoH instead of DoT? I cannot understand why on analytics page I receive unidentified devices with 0% encryption if all devices are connected to the router which is using DoT?
-
So it’s a Windows machine you are thinking it could be coming from? Maybe just check your network adapter settings on the computer? I’ve not used windows on any machine for quite some time, so can’t give anything specific.
-
if I change the settings on my windows laptops, then I receive DoH.
If I leave to automatic, I receive DoT result, but I have unidentified devices with 0% encryption.
What am I missing?
-
Ah, windows is so annoying.
You could try out inputting the router’s IP address as DNS address, see what result you get.
-
you mean actual IP address from the router? Not NextDNS IP addresses?
-
Content aside
- 8 hrs agoLast active
- 29Replies
- 194Views
-
3
Following