hello, thanks,
factory reset AR750S-EXT with firmware 3.212.
cannot get dns over tls to work,
these are the settings, notice i am using nextdns
but when i log into nextdns, i am told the router is using cloudflare???
rebooting does not help
- check your Stubby(DoT process) configuration file under /etc/stubby/stubby.yml
- check your DHCP & DNS configuration to see if it’s pointing to Stubby’s listenin port (format: IP#port )
thanks,
cat /etc/stubby/stubby.yml
resolution_type: GETDNS_RESOLUTION_STUB
dns_transport_list:
- GETDNS_TRANSPORT_TLS
tls_authentication: GETDNS_AUTHENTICATION_REQUIRED
tls_query_padding_blocksize: 128
edns_client_subnet_private : 0
round_robin_upstreams: 0
idle_timeout: 10000
listen_addresses:
- 127.0.0.1@53535
- 0::1@53535
upstream_recursive_servers:
- address_data: 45.90.28.0
tls_auth_name: "redacted.dns1.nextdns.io"
- address_data: 2a07:a8c0::49:5faa
tls_auth_name: "redacted.dns1.nextdns.io"
- address_data: 45.90.30.0
tls_auth_name: "redacted.dns2.nextdns.io"
- address_data: 2a07:a8c1::49:5faa
tls_auth_name: "redacted.dns2.nextdns.io"
- i am using the factory default settings, looks ok to me. do you see any issues?
The configuration file looks normal and correct.
Maybe you can try other DNS checking website to double check if the result is still Cloudflare’s.
If NextDNS’s linked IP/DDNS matched your current IP address?
Did you test DNS configuration on iPhone and have “Hide IP address” option turned on? (Apple utilize CloudFlare’s server to do a layer of proxy)?
NextDNS: https://test.nextdns.io
BrowserLeak: DNS Leak Test - BrowserLeaks
Any upper layer network (ISP or firewall something) has forced DNS redirection or something?
3.212 should not have such bugs.
Maybe check if your laptop use 1.1.1.1?
sorry to all, i made a super simple stupid mistake.
thanks much,
david