Hi All,
Running Merlin 388.4 on a RT-AX88U router.
I am using the private AdGuard DNS service for my DNS filtering. Its a single DNS server, but I can configure devices on the server. Each device is given a unique addresses to use to query the DNS server so that the server will know which device is making the request.
So apart from my router, my two mobile Android devices have Private DNS enabled and I set the device address as specified in AdGuard DNS (like below). NB: Android only use DoT at this point, as well as the router.
Example of a device addresses to use for a device:
My router is configured to use the public AdGuard Unfiltered DNS Servers by default. I have also enabled the DNS Privacy Protocol to my AdGuard DNS Address for the Asus RT-AX88U address. (as below)
I also enabled DNS Director enabled as below. I did this because some device were doing DNS calls directly to other public DNS service bypassing the DNS specified by the router.
You'll notice my two mobile devices have been added with "No Redirection", hold that thought though.
The issue is this:
When my mobile devices are connected to a mobile network, the DNS queries are being sent to AdGuard DNS correctly as DoT request. I can see this in the logs.
When my mobile device are connect to the router's WiFi, they both show an error that the can't connect to the AdGuard DoT address specified for the device. The only way to make it work is to add the "No redirection" for the two devices in DNS Director.
Its not an issue really, just tying to understand why. I believe that the mobile device are trying to resolve the DoT address configured, and this is what is failing. I can do an NSLOOKUP from my PC on the same WiFi to the DoT addresses, I get the correct response back.
Any guru's on DNS on why I need to add "No redirection" for those 2 devices?
Thanks
Running Merlin 388.4 on a RT-AX88U router.
I am using the private AdGuard DNS service for my DNS filtering. Its a single DNS server, but I can configure devices on the server. Each device is given a unique addresses to use to query the DNS server so that the server will know which device is making the request.
So apart from my router, my two mobile Android devices have Private DNS enabled and I set the device address as specified in AdGuard DNS (like below). NB: Android only use DoT at this point, as well as the router.
Example of a device addresses to use for a device:
My router is configured to use the public AdGuard Unfiltered DNS Servers by default. I have also enabled the DNS Privacy Protocol to my AdGuard DNS Address for the Asus RT-AX88U address. (as below)
I also enabled DNS Director enabled as below. I did this because some device were doing DNS calls directly to other public DNS service bypassing the DNS specified by the router.
You'll notice my two mobile devices have been added with "No Redirection", hold that thought though.
The issue is this:
When my mobile devices are connected to a mobile network, the DNS queries are being sent to AdGuard DNS correctly as DoT request. I can see this in the logs.
When my mobile device are connect to the router's WiFi, they both show an error that the can't connect to the AdGuard DoT address specified for the device. The only way to make it work is to add the "No redirection" for the two devices in DNS Director.
Its not an issue really, just tying to understand why. I believe that the mobile device are trying to resolve the DoT address configured, and this is what is failing. I can do an NSLOOKUP from my PC on the same WiFi to the DoT addresses, I get the correct response back.
Any guru's on DNS on why I need to add "No redirection" for those 2 devices?
Thanks
