0

EDNS/ECS Broken

It's quite possible I've done something stupid, but if not, it appears that EDNS isn't working as expected currently and in turn is causing CDN traffic to route to Australia instead of New Zealand for some sites . 

If I test using dig help.nextdns.io CHAOS  the smart-ecs header shows.

client-name.nextdns.io. 0 CH TXT "nextdns-mac"
smart-ecs.nextdns.io. 0 CH TXT "14.137.0.0/24"

However if I test externally it is showing no EDNS is being passed - Tested on both a Macbook and Samsung S25 to ensure it isn't device specific. 

https://dnscheck.tools/ - Does not show any ECS records

http://test.edge.apple/debug/ - No EDNS pass. 

{"connectionInfo":"http/1.1","npnNegotiated":false,"who":"ausyd2-edge-fx-016","5m":
{"fileSizeInBytes":5242880,"timeInMs":341,"throughputInBitsPerSecond":122997964.8},
"ip":{"DNS":"185.99.133.208","EDNS":"","HTTP":"116.X.X.X"}}

dig +tcp +nocomment chaos google.com @ecs-test.nextdns.io 

google.com. 82 IN A 142.250.70.238
proto.nextdns.io. 0 CH TXT "TCP"
server.nextdns.io. 0 CH TXT "gsl-mel-1"
profile.nextdns.io. 0 CH TXT "default"
client-name.nextdns.io. 0 CH TXT "unknown"
smart-ecs.nextdns.io. 0 CH TXT "not sent"

Diag Test - https://nextdns.io/diag/ddbe1270-8465-11f0-9152-11fa754f28d5

2 replies

null
    • R_P_M
    • 4 days ago
    • Reported - view

     said:
    profile.nextdns.io. 0 CH TXT "default"

    This line is indicating that you’re not using your own configuration profile.  

      • Tane
      • 4 days ago
      • Reported - view

       Both test.nextdns.io and dig help.nextdns.io CHAOS show the profile working fine.

      However testing anything that tests ECS/EDNS is working externally (e.g. Apple CDN test, Akamai's whoami tool, etc) all show no ECS / EDNS header being passed. This has previously worked fine. 

      I've also tested this on multiple internet connections/devices to make sure thats not the issue. 

Login to reply

Content aside

  • 3 days agoLast active
  • 2Replies
  • 44Views
  • 2 Following