I forgot to mention that I also had problems with trying to set up a VPN with the FRITZ!Box. It only had the choice of IPsec, but that wouldn't work on my Android mobile (I did read somewhere that it's not currently compatible with the latest Android OS). They have now made Wireguard an option, but it's not yet been officially released on all models, although one does have the option of trying beta firmware. Also, there's no SNMP, which is what I need for Networx. The RT-AX88U Pro does have SNMP available via the GUI, but I think I'll need to reinstall the script I used before as the built-in SNMP doesn't want to work with Networx, so without that, my only option would be to switch on UPnP (it does work with that).Nothing is wrong with it. @TheLyppardMan sold his by mistake and wanted it back.
I would leave the setting above "Prevent auto client DoH" to default No though.
Seems like with the new router you have started a new playing with the settings cycle and I expect more threads to come.
The default setting on my new ASUS RT-AX88U Pro was "auto" and I haven't changed it so far as I don't know what the difference is. I do remember that I did try using "yes" on my previous router and I found I had some problems (I can't remember the details but I think I had trouble accessing some web sites), so I won't be using that option again. So my only consideration is whether to use "no" as per your suggestion or leave it on auto. Can you explain the difference for me (in simple terms) so that I can make an informed choice?
In my Asus RT-AX88U with newly loaded Merlin 388.2 firmware, the default setting of "Prevent client auto DoH" is also "Auto"
Maybe I will change to "No" after DNS check tools confirming of no DNS leakage.
Did I say once I eat mandalorians and steal their armor?
.
dnsmasq[2526]: possible DNS-rebind attack detected:
Same, sometimes I am using Miami servers, other times I am using them in New York, George, or Texas. I am in Florida, you would figure all my request would be hitting Miami, but apparently quad9 load balances across all servers, or it is using some randomized round Robin algorithms. That must be how it ensures each users privately load balanced. I think I saw some of my queries passing @Tech9 On their return trip home, but I cannot say for sure.Two more:
dnscheck.tools - check your dns resolvers
A tool to test for DNS leaks, DNSSEC validation, and morednscheck.tools
DNS Leak Test
The DNS Leak Test is a tool used to determine which DNS servers your browser is using to resolve domain names. This test attempts to resolve 50 randomly generated domain names, of which 25 are IPv4-only and 25 are IPv6-only.browserleaks.com
Quad9 often takes me on a journey across the USA. Sometimes we may visit exotic destinations.
My list of IT Tools in my Google Chrome bookmarks is getting longer and longer (but it's very useful for me as a reminder of how to do stuff).
Yes they will (or at least most of them do). That's the entire point of having the rebind protection option.
I have seen some of those upscream local requests, they can be ugly.
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!
