DnsServer icon indicating copy to clipboard operation
DnsServer copied to clipboard
verified publisher icon TechnitiumSoftware

AdvancedForwarding app EDNS issues in 12.1

Open christianstrauch opened this issue 1 year ago • 3 comments

After updating to 12.1, the advanced forwarding app using my previously perfectly working configuration is generating an "EDNS client subnet mismatch" error for every request. After uninstalling the advanced forwarding app (but using the exact same forwarder,) forwarding works fine, i.e., the issue is not with the forwarder nor with the DNS configuration.

Here is my advanced forwarding config:

{
  "enableForwarding": true,
  "forwarders": [
    {
      "name": "ControlD Device 1",
      "proxy": null,
      "dnssecValidation": false,
      "forwarderProtocol": "Tls",
      "forwarderAddresses": [
        "xyz1.dns.controld.com ([2606:1a40::22]:853)",
        "xyz1.dns.controld.com (76.76.2.22:853)"
      ]
    },
    {
      "name": "ControlD Kids Device",
      "proxy": null,
      "dnssecValidation": false,
      "forwarderProtocol": "Tls",
      "forwarderAddresses": [
        "xyz2.dns.controld.com ([2606:1a40::22]:853)",
        "xyz2.dns.controld.com (76.76.2.22:853)"
      ]
    }
  ],
  "networkGroupMap": {
    "192.168.xxx.yyy/27": "kids",
    "0.0.0.0/0": "everyone",
    "[::]/0": "everyone"
  },
  "groups": [
    {
      "name": "everyone",
      "enableForwarding": true,
      "forwardings": [
        {
          "forwarders": [
            "ControlD Device 1"
          ],
          "domains": [
            "*"
          ]
        }
      ]
    },
    {
      "name": "kids",
      "enableForwarding": true,
      "forwardings": [
        {
          "forwarders": [
            "ControlD Kids Device"
          ],
          "domains": [
            "*"
          ]
        }
      ]
    }
  ]
}

christianstrauch avatar Jun 11 '24 09:06 christianstrauch

Thanks for the feedback. There is no change in the app so not sure why upgrading is breaking it. Do you have "EDNS Client Subnet" option enabled in Settings?

Also, please share the complete error log here so that it becomes easy to understand the issue.

ShreyasZare avatar Jun 12 '24 07:06 ShreyasZare

I don't have EDNS Client Subnet enabled, no. Unfortunately, I can't share the full log right now. It does only show a very large amount of identical EDNS Client Subnet Mismatch errors - for each forwarding request, though. Let me know if this is required to further diagnose and I will find a good time to put the (failing) advanced forwarding configuration back in. I would need to schedule internet downtime for this.

christianstrauch avatar Jun 22 '24 15:06 christianstrauch

I don't have EDNS Client Subnet enabled, no. Unfortunately, I can't share the full log right now. It does only show a very large amount of identical EDNS Client Subnet Mismatch errors - for each forwarding request, though. Let me know if this is required to further diagnose and I will find a good time to put the (failing) advanced forwarding configuration back in. I would need to schedule internet downtime for this.

The error log which gives complete stack trace is really important to understand the issue. Without the complete error log, I wont be able to do much. So, do share it either here or send it to [email protected].

ShreyasZare avatar Jun 23 '24 10:06 ShreyasZare