AdguardForWindows
AdguardForWindows copied to clipboard
AdguardTeam
DNS Filtering is incompatible with Heimdal security dark layer
DNS Filtering doesn't work in Windows 11, as soon as i enable it my internet disconnects, anyone found this issue and solved please advise, it's quite irritating now.
From messages in private chat: "Hi, i found the problem but not able to fix it, the issue is caused because Network Protection is enabled https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/enable-network-protection?view=o365-worldwide but i am not able to set it to Audit Mode i found key in regedit but when i try to change value from 0 to 2 i get this error "cannot edit enablenetworkprotection. error writing the value's new contents" .. any idea how to fix this?"
@umarmughal you may not have the rights to do so. Defender Endpoint implies that it has a computer under the control of the organisation's administrator, who gives permission.
@Aydinv13 it's my system and i have all the rights no need any permission from administration, issue is something else ...
@umarmughal Try to set permissions on the registry key like described in this article: https://www.howtogeek.com/262464/how-to-gain-full-permissions-to-edit-protected-registry-keys/
@northis this idea works but only till i sleep my system, once i wake it up internet gone .. i must restart system again and this is definitely not the solution ...
ok i can confirm that even this trick is not working either, today when i open my system no internet and as soon as i disabled dns filtering laptop connected ...
@umarmughal To disable network protection, try this from Microsoft Docs
On a standalone computer, go to Start and then type and select Edit group policy. ... In the Group Policy Management Editor, go to Computer configuration and select Administrative templates. Expand the tree to Windows components > Microsoft Defender Antivirus > Windows Defender Exploit Guard > Network >protection. ... Disable (Default) - The Network protection feature won't work. Users won't be blocked from accessing malicious domains.
@northis even after disabling network protection issue is still there, can not enable dns filtering in adguard .. looks like the issue is heimdal security dark layer (enabled).
@umarmughal how can we get Heimdal Security Darklayer? May be you can share distributive for us to check it on our side? Because it's not reproduced with just Heimdal Security. If you don't mind we can receive it via email [email protected]
@Aydinv13 you can download the antivirus here www.heimdalsecurity.com and enable darklayer (screenshot attached) to test with AG.
@umarmughal sorry for a big delay, it seems that the issue is reproduced on our side so it will be easier to trace what's causing it.
@umarmughal This Heimdal software sets their local DNS server as a system one. We are still investigate the problem, because this is real tricky to reproduce. A possible fix for you is to set a custom bootstrap address in the Advanced Settings to a plain working DNS, for ex. 8.8.8.8
This address will be used to resolve DNS-over-HTTPS address such as dns.adguard.com or other.
@umarmughal Please, send us your logs again.
And we prepared a special build for this issue https://uploads.adguard.com/AdGuard.7.10.3936.gh4180.01.exe You can set the log level to Debug and install this build. The issue may be fixed. If not - please, send us the logs after.
@northis do i need to uninstall the current version of AG and reinstall this one?
You can install this build over the current version, but better to export your settings before to be able to install the previous version again (like a precaution). I've updated the download link in my previous message.
@Aydinv13 when i made changes as @northis said it was working fine then i shutdown the system, next day when i booted my system again there is no internet then i changed bootstrap proxy from 1.1.1.1 to 8.8.8.8 disconnected wifi and then reconnected after 2 minutes and it was back again .. looks like we are closed to solve the issue but still not 100% fixed ...
@Aydinv13 i am on AG 7.10 nightly 16 but problem still exists .. it was working unless i sleep my system and then wake it up but after update again when i enable DNS filter my internet disconnects ...
@umarmughal Well, we are going to collect some data and report the issue to Heimdal. You can restart AdGuard to get rid of this problem temporarily.
@umarmughal They have updated their software (version 3.0.1). We tried this version and seems it works fine with AdGuard.
@northis i am using version 3.0.1 and confirm that it's not working, if it's working for you put your laptop / desktop to sleep for 5 - 10 minutes then wake it up and internet gone .. note that i am connected through wifi and not cable.
@umarmughal have you tried the latest 7.11 nightly 9 with Heimdal? If the issue hasn't gone, we would ask you to do this:
- Run AdGuard with trace logs (by running
"C:\Program Files (x86)\Adguard\Adguard.exe" /trace) - Run WireShark and start the network traffic collection
- Reproduce the issue
- Stop the traffic collection, save the traffic to a file.
- Stop AdGuard
- Collect logs from
C:\ProgramData\Heimdal Security\HeimdalLogs - Collect logs from
C:\ProgramData\Adguard\Logs - Zip all the logs and the traffic dump file
Or we can connect to your PC and do this for you.
@northis i was using nightly but since it's my work machine so i uninstalled it because of frequent updates and adguard freeze whenever new update comes up ...
У меня тоже в 7.11 beta 1 после проверки начал вылетать UI либо отключаться фильтрация и желтеть значок в трее...
У меня тоже в 7.11 beta 1 после проверки начал вылетать UI либо отключаться фильтрация и желтеть значок в трее...
Пожалуйста, отправьте ваши логи с моментом вылета UI/службы нам на почту [email protected]
@northis в конце прошлой недели дважды после аварийного вылета отправлял из приложения и пару минут назад.