Carrier APN details here:

User reports that he is unable to send and receive MMS messages while AdGuard DNS is enabled. He's only using AdGuard DNS.

@Eugene-Savenko commented on Tue Feb 06 2018

Мы используем Adguard DNS иногда возникают ситуации, когда блокируется нормальный сайт и наши пользователи пытаются связаться с вашей поддержкой через ссылку на заблокированном сайте, но при этом возникает проблема с кодировкой письма. При нажатии на ссылку " Связаться с поддержкой " открывается Outlook и в нём вместо текста нечитаемые символы.

Это наблюдается и Outlook 2010 и 2013. Браузер - Google Chrome. Причём видно, что сначала открывается страница с предупреждением на английском, а потом сама сразу же переключается на русский. При использовании Firefox, переключения на русский не происходит и кодировка остаётся читаемой, но на английском языке.

Expected behavior

The encoding doesn't change

Actual behavior

It changes to a wrong one

Your environment

Very sad with adguard no server in Brazil, any hope?

link for example: https://www.sbs.com.au/news/our-hearts-ache-mourning-in-virginia-beach-after-150th-mass-shooting-in-us
is there any way to make it work?

How do we know which domains are blacklisted by AdGuard DNS?

Site non-resolvable when using AdGuard DNS.

AdGuard Default DNS: NXDOMAIN
Google Public DNS: 89.111.162.38, 89.111.162.37

Sorry for the question. I am a noob. What should be the configuration for stuby dns for ubuntu ?

Should it be like this, below ?

Adguard servers

• address_data: 176.103.130.130
  tls_port: 5353
  tls_auth_name: "dns.adguard.com"
• address_data: 176.103.130.131
  tls_port: 5353
  tls_auth_name: "dns.adguard.com"
  Do I need tthe line tls_port 5353 or 53 ?

Do I need the line tls_port at all?
Do I need anything else to write?

Huge thank you anyway.

Hi, first of all I appreciate your work since the early days especially on adguard dns family filter, the easy setup on our home router and the peace of mind was awesome!

But since forcing restricted mode on youtube I had to stop using adguard dns after a lot of complaints from family members about youtube being basically unusable! (clean videos restricted, newly published videos restricted, no comments..)

I don't really know how to solve this without creating a varient of family filter without restricted mode on youtube, while at current conditions the filter can be perfect for a family consisting of kids only, on the other hand it can be annoying to use in a family with several adults... can I bypass this locally? maybe you have a solution for this.. I hope so.. thanks

AdGuard DNS (176.103.130.130, 176.103.130.131) sporadically blocks PayPal interstitial links like https://epl.paypal-communication.com/T/v400000168eb124736a9bc7af4bbe5c898/b5afd432b91449400000021ef3a0bcc6/b5afd432-b914-4940-9b78-6d409cf02610?__dU__=v0G4RBKTXg2GtDSXU69hUjn5RqR7EEyYkx
,

as reported by user 2116559

In playing around with DoH i have found that adguard DNS doesn't work as well with cloudflared as cloudflare does (issue #25). In testing DoH responses I found that adguard DoH returns two values from a query where cloudflare and google return only one (using this as my troubleshooting guide - https://medium.com/@nykolas.z/troubleshooting-dns-over-https-c1e1009d3eb8):

[root@admin ~]# curl "https://dns.google.com/experimental?ct&dns=q80BAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE" | strings
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 45 100 45 0 0 300 0 --:--:-- --:--:-- --:--:-- 298
example
[root@admin ~]# curl "https://1.1.1.1/dns-query?ct&dns=q80BAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE" | strings
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 128 100 128 0 0 1422 0 --:--:-- --:--:-- --:--:-- 1422
example
[root@admin ~]# curl "https://dns.adguard.com/dns-query?ct&dns=q80BAAABAAAAAAAAB2V4YW1wbGUDY29tAAABAAE" | strings
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 56 100 56 0 0 339 0 --:--:-- --:--:-- --:--:-- 339
example
example

I wonder if this could be the source of my problem in issue #25 ...

Thanks!
Mike

NSFW
Biqla.com
Momjoi.com

Please, add in DNSProxy mobile API:
-Upstreams validation.
-DoT support via SDNS stamps.

Hi,

I'm using Adguard DNS servers ( 176.103.130.130
176.103.130.131 ) with my WiFi modem configuration i.e 192.168.1.1.

Everything was working fine but of late it is giving trouble with legit sites.

For example this legit mobile site is not opening with Adguard DNS server : https://www.91mobiles.com/ . I get DNS_PROBE_FINISHED_NXDOMAIN error on trying to access this site.

What is the issue here? I have checked everything on my end. The site promptly opens up when I use 4g on my phone!

Please look into it and rectify the error. This must be happening with other sites as well!

Hi !

( Tried posting on your website news item from Dec'18 but Disqus is jammed.
Don't know how to post a comment on the hackernews thread-no button !)

Just read the informative hackernews thread:

https://news.ycombinator.com/item?id=18788410

1. Per Troy Hunt article, how much speed/throughout improvement can we expect from Adguard DNS compared with Pi-hole?

2. Is it true that Youtube/ Netflix/other websites could slow down with Adguard DNS compared with Pi-hole? What is the comparison?

3. CloudFlare states that Adguard uses it as CDN for 4x speed improvement, with a quote from Adguard founder:

https://www.cloudflare.com/case-studies/adguard/

So this all confuses me given many online references to "slow" Adguard service.

Can Adguard clarify all this?

Btw those who tell me Adguard is "Russian" implying not trustworthy, ought to remember Ed Snowden. If you can trust friendly Google, you can trust anyone !

Most blocked sites in family protection return this

NET::ERR_CERT_COMMON_NAME_INVALID

@ameshkov Yours DNS resolvers breaks player.pl VOD streaming cause Adblock Detect warning.
ADGUARD DNS RESOLVER RESULTS

www.google-analytics.com/analytics.js:1 Failed to load resource: net::ERR_NAME_NOT_RESOLVED
porthole.min.js:38 Porthole: Using built-in browser support
/playerapi/document/rodo-short/content?4K=true&platform=BROWSER:1 Failed to load resource: the server responded with a status of 500 (Request Blocked)
portal.js:2 Uncaught (in promise) Error: Request failed with status code 500
    at t.exports (portal.js:2)
    at t.exports (portal.js:2)
    at XMLHttpRequest.h.<computed> (portal.js:2)
www.gstatic.com/firebasejs/3.6.4/firebase.js:1 Failed to load resource: the server responded with a status of 500 ()
connect.facebook.net/en_US/fbevents.js:1 Failed to load resource: the server responded with a status of 500 ()
js-agent.newrelic.com/nr-1123.min.js:1 Failed to load resource: net::ERR_NAME_NOT_RESOLVED
porthole.min.js:38 Porthole: Using built-in browser support
tvn.hit.gemius.pl/xgemius.js:1 Failed to load resource: net::ERR_NAME_NOT_RESOLVED
scontent.services.tvn.pl/sweqevub.js:1 Failed to load resource: net::ERR_NAME_NOT_RESOLVED
rcontent.services.tvn.pl/sweqevub.js:1 Failed to load resource: the server responded with a status of 500 ()
www.googletagmanager.com/gtm.js?id=GTM-4H76:1 Failed to load resource: the server responded with a status of 500 ()
chrome-extension://emffkefkbkpkgpdeeooapgaicgmcbolj/js/cards-click.js:32 detected link
tvn.hit.gemius.pl/gplayer.js:1 Failed to load resource: net::ERR_NAME_NOT_RESOLVED
scontent.services.tvn.pl/gplayer.js:1 Failed to load resource: net::ERR_NAME_NOT_RESOLVED
tvn.hit.gemius.pl/xgemius.js:1 Failed to load resource: net::ERR_NAME_NOT_RESOLVED
cards-click.js:32 detected link
jquery.min.js:4 [Deprecation] Synchronous XMLHttpRequest on the main thread is deprecated because of its detrimental effects to the end user's experience. For more help, check https://xhr.spec.whatwg.org/.
send @ jquery.min.js:4
jquery.min.js:4 GET https://tvn.adocean.pl/ad.xml?tvn_vod_trailer=0/aocodetype=1/midcnt=7/predur=240/mid4dur=24/postdur=240/overdur=6420/mid1dur=240/mid5dur=24/mid2dur=240/mid6dur=24/mid3dur=240/mid7dur=24/tvn_vod_embed=0/catchup_no_fee=0/id=zeOb3_LRSL3Bnfg15ylC7tH60MVPXMMAN8DTNtpnaE3.V7/tvn_vod_serie=vinci/tvn_vod_season=0/tvn_vod_episode=0/vod_p_r=12/tvn_login=yes/tvn_content_category=filmy/tvn_vod_category=326,300,333/tvn_collection=376418,465349,635574,704914,919529,946972,1658145/tvn_vod_traffic_category=menedzer,kobieta/tvn_content_source=studio_filmowe_zebra/tvn_price=no/tvn_vod_prepremiere=0/tvn_vod_wonid=VUE-16-008,04_350_06122_0000/tvn_terminal=24/tvn_player_type=kinowy_player5,360_/tvn_page=filmy_online_vinci_26494/tvn_device_type=Desktop/x=1536/y=864/w=982/h=763/tvn_player_size=679/mei=ok/gdprconsent=1/gdprconsentstr= net::ERR_NAME_NOT_RESOLVED
send @ jquery.min.js:4
ajax @ jquery.min.js:4
vastRequest @ player.js:1
initVast @ player.js:1
decline @ player.js:1
(anonymous) @ portal.js?v=3fbdc88c50e0:33
Promise.catch (async)
(anonymous) @ portal.js?v=3fbdc88c50e0:33
showBookmarkResume @ portal.js?v=3fbdc88c50e0:33
(anonymous) @ portal.js?v=3fbdc88c50e0:33
dispatch @ jquery.min.js:3
Xa.h @ AdGuard Popup Blocker.user.js:156
Hb.f @ AdGuard Popup Blocker.user.js:165
(anonymous) @ AdGuard Popup Blocker.user.js:156
dispatch @ AdGuard Popup Blocker.user.js:155
q.handle @ jquery.min.js:3
Xa.h @ AdGuard Popup Blocker.user.js:156
mc @ AdGuard Popup Blocker.user.js:174
(anonymous) @ AdGuard Popup Blocker.user.js:162
(anonymous) @ AdGuard Popup Blocker.user.js:156
dispatch @ AdGuard Popup Blocker.user.js:155
v.triggerNodeEvent @ player.js:1
show @ player.js:1
t.enabled.T.initVast @ player.js:1
videojs.Player.onPlay @ player.js:1
n @ player.js:1
o.dispatcher.o.dispatcher @ player.js:1
videojs.trigger @ player.js:1
vjs.Component.trigger @ player.js:1
videojs.Html5.eventHandler @ player.js:1
n @ player.js:1
o.dispatcher.o.dispatcher @ player.js:1
play (async)
(anonymous) @ player.js:1

NORMAL VALID CONSOLE OUTPUT WHEN STREAM WORKS (with 1.1.1.1 DNS resolver)

Failed to load resource: the server responded with a status of 500 ()
connect.facebook.net/en_US/fbevents.js:1 Failed to load resource: the server responded with a status of 500 ()
porthole.min.js:38 Porthole: Using built-in browser support
/playerapi/document/rodo-short/content?4K=true&platform=BROWSER:1 Failed to load resource: the server responded with a status of 500 (Request Blocked)
portal.js?v=3fbdc88c50e0:2 Uncaught (in promise) Error: Request failed with status code 500
    at t.exports (portal.js?v=3fbdc88c50e0:2)
    at t.exports (portal.js?v=3fbdc88c50e0:2)
    at XMLHttpRequest.h.<computed> (portal.js?v=3fbdc88c50e0:2)
js-agent.newrelic.com/nr-1123.min.js:1 Failed to load resource: the server responded with a status of 500 ()
porthole.min.js:38 Porthole: Using built-in browser support
tvn.hit.gemius.pl/gplayer.js:1 Failed to load resource: the server responded with a status of 500 ()
xgemius.js:1 Failed to load resource: the server responded with a status of 500 ()
gtm.js:1 Failed to load resource: the server responded with a status of 500 ()
xgemius.js:1 Failed to load resource: the server responded with a status of 500 ()
sweqevub.js:1 Failed to load resource: the server responded with a status of 500 ()
sweqevub.js:1 Failed to load resource: the server responded with a status of 500 ()
jquery.min.js:4 [Deprecation] Synchronous XMLHttpRequest on the main thread is deprecated because of its detrimental effects to the end user's experience. For more help, check https://xhr.spec.whatwg.org/.
send @ jquery.min.js:4
ajax @ jquery.min.js:4
window.nuvi.playlist.Controller @ player.js:1
PlayerVJS @ player.js:1
$.fn.player5 @ player.js:1
(anonymous) @ portal.js?v=3fbdc88c50e0:34
Promise.then (async)
start @ portal.js?v=3fbdc88c50e0:34
(anonymous) @ portal.js?v=3fbdc88c50e0:34
Promise.then (async)
(anonymous) @ portal.js?v=3fbdc88c50e0:34
Promise.then (async)
runPlaying @ portal.js?v=3fbdc88c50e0:34
play @ portal.js?v=3fbdc88c50e0:34
(anonymous) @ portal.js?v=3fbdc88c50e0:23
(anonymous) @ portal.js?v=3fbdc88c50e0:12
ye @ portal.js?v=3fbdc88c50e0:12
Promise.then (async)
Kr @ portal.js?v=3fbdc88c50e0:13
be @ portal.js?v=3fbdc88c50e0:12
e.$nextTick @ portal.js?v=3fbdc88c50e0:12
play @ portal.js?v=3fbdc88c50e0:23
(anonymous) @ portal.js?v=3fbdc88c50e0:37
player.js:1 It is recommended that a robustness level be specified. Not specifying the robustness level could result in unexpected behavior.
t @ player.js:1
(anonymous) @ player.js:1
t @ player.js:1
a @ player.js:1
t.a @ player.js:1
value @ player.js:1
(anonymous) @ player.js:1
value @ player.js:1
(anonymous) @ player.js:1
value @ player.js:1
h.onreadystatechange @ player.js:1
XMLHttpRequest.send (async)
u @ player.js:1
l @ player.js:1
get @ player.js:1
value @ player.js:1
value @ player.js:1
value @ player.js:1
value @ player.js:1
value @ player.js:1
value @ player.js:1
(anonymous) @ player.js:1
setTimeout (async)
r @ player.js:1
value @ player.js:1
n @ player.js:1
value @ player.js:1
value @ player.js:1
(anonymous) @ player.js:1
value @ player.js:1
value @ player.js:1
setTimeout (async)
value @ player.js:1
videojs.AtendeCore.start @ player.js:1
videojs.Player.techCall @ player.js:1
init @ player.js:1
v.playMovie @ player.js:1
(anonymous) @ player.js:1
a.bindEvents @ player.js:1
(anonymous) @ player.js:1
Promise.then (async)
success @ player.js:1
i @ jquery.min.js:2
fireWith @ jquery.min.js:2
A @ jquery.min.js:4
(anonymous) @ jquery.min.js:4
load (async)
send @ jquery.min.js:4
ajax @ jquery.min.js:4
vastRequest @ player.js:1
initVast @ player.js:1
confirm @ player.js:1
(anonymous) @ portal.js?v=3fbdc88c50e0:33
Promise.then (async)
(anonymous) @ portal.js?v=3fbdc88c50e0:33
showBookmarkResume @ portal.js?v=3fbdc88c50e0:33
(anonymous) @ portal.js?v=3fbdc88c50e0:33
dispatch @ jquery.min.js:3
q.handle @ jquery.min.js:3
Xa.h @ AdGuard Popup Blocker.user.js:156
mc @ AdGuard Popup Blocker.user.js:174
(anonymous) @ AdGuard Popup Blocker.user.js:162
(anonymous) @ AdGuard Popup Blocker.user.js:156
dispatchEvent @ AdGuard Popup Blocker.user.js:155
v.triggerNodeEvent @ player.js:1
show @ player.js:1
t.enabled.T.initVast @ player.js:1
videojs.Player.onPlay @ player.js:1
n @ player.js:1
o.dispatcher.o.dispatcher @ player.js:1
videojs.trigger @ player.js:1
vjs.Component.trigger @ player.js:1
videojs.Html5.eventHandler @ player.js:1
n @ player.js:1
o.dispatcher.o.dispatcher @ player.js:1
play (async)
(anonymous) @ player.js:1
Promise.then (async)
videojs.Html5.play @ player.js:1
videojs.Player.techCall @ player.js:1
vjs.Player.play @ player.js:1
videojs.BigPlayButton.onClick @ player.js:1
(anonymous) @ player.js:1
vjs.Component.ready @ player.js:1
init @ player.js:1
i @ player.js:1
init @ player.js:1
i @ player.js:1
vjs @ player.js:1
PlayerVJS @ player.js:1
$.fn.player5 @ player.js:1
(anonymous) @ portal.js?v=3fbdc88c50e0:34
Promise.then (async)
start @ portal.js?v=3fbdc88c50e0:34
(anonymous) @ portal.js?v=3fbdc88c50e0:34
Promise.then (async)
(anonymous) @ portal.js?v=3fbdc88c50e0:34
Promise.then (async)
runPlaying @ portal.js?v=3fbdc88c50e0:34
play @ portal.js?v=3fbdc88c50e0:34
(anonymous) @ portal.js?v=3fbdc88c50e0:23
(anonymous) @ portal.js?v=3fbdc88c50e0:12
ye @ portal.js?v=3fbdc88c50e0:12
Promise.then (async)
Kr @ portal.js?v=3fbdc88c50e0:13
be @ portal.js?v=3fbdc88c50e0:12
e.$nextTick @ portal.js?v=3fbdc88c50e0:12
play @ portal.js?v=3fbdc88c50e0:23
(anonymous) @ portal.js?v=3fbdc88c50e0:37

@AdamWr @Alex-302

I was using 'family-dns.adguard.com" on android 9 pie's default dns over tls support. but it stpooed working about a month ago, doesn't load any pages with this address anymore. default "dns.adguard.com" works fine...

Не работает DNS

https://www.moviessporn.com
https://www.gca.org.za/
https://www.arabincest.com/
https://www.iss.org.za/
https://www.haremnick.com/
https://alxxxhub.com/
https://hottubear.com/
https://chimera48.ru/
https://www.wahedsex.com/
https://www.hijabsextube.com/
https://www.niswansex.com/
https://gssrf.ru/
https://www.polokwane.org.za/
https://www.pe.org.za/
https://www.afilm-sexx.xyz/
https://www.elkeda.gr/
https://jivoyruchey.ru/
https://www.zebawy.com/
https://ar.maxlistporn.com/
https://sh.vitra-sajt.ru/
https://www.xvideos.com/
http://www.blackroulette.com/
http://www.4clips.com/

Contents (in Russian):

Здравствуйте.

Имеется следующее оборудование:

1. ТВ-приставка (SML-482HD) "Интерактивное телевидение 2.0" от компании "Ростелеком".
2. Роутер Keenetic Ultra (KN-1810) с включенным на нем AdGuard DNS. Опция была активирована в настройках роутера в разделе Internet Safety, а не путем прописывания в соответствующем разделе настроек роутера DNS серверов AdGuard.

Если для ТВ-приставки установлена опция фильтрации трафика через AdGuard DNS, то приставка при загрузке не может получить от серверов "Ростелекома" ссылки на плей-листы и, как следствие, проигрывать их. На приставке также не работают диагностические тесты, например, на проверку необходимой ширины канала.

При отключении для приставки функции фильтрации трафика (установка опции в настройках роутера "No Protection") никаких проблем с интерактивным телевидением не возникает - приставка работает, как должна, осуществляя стриминг онлайн-контента и проходя все диагностические тесты.

При отсутствии проблем приставка соединяется с серверами 212.193.155.242 и 212.193.153.146 и работает с плей-листами http://zabava-htlive.cdn.ngenix.net/, http://a3569457554-zabava-htlive.cdn.ngenix.net/ и http://212.193.153.146/*.

Проблема появилась 20.09. Днем ранее - 19.09 - при включенном AdGuard DNS на роутере для всех устройств локальной сети, включая ТВ-приставку, никаких проблем не наблюдалось.

I understand there's https://adguard.com/en/test.html but how do I confirm that I am indeed using Adguard DoH? Cloudflare have a test page for such a thing.

ad.mi.com
ad.xiaomi.com

If possible block these two domains

u8vysb7s2v.com
graph.facebook.com
www.ora.tv
cixvlpbnceh.com
i62e2b4mfy.com

Thanks.

link
https://link.safelinkconverter.com/review.php?id=aHR0cHM6Ly9nKCguZ2wvTkxNanB2&c=1&user=54097

please whitelist safelinkconverter

SS :
https://i.imgur.com/UVaR16Q.png

Anything else I need to change . Linux mint 19.1 . I have installed certificate in firefox too.

Stop blocking innocent blog.

@Esokrates commented on Fri Apr 13 2018

Please consider blacklisting proxysites that help to circumvent the family restrictions.
Those proxies are easy to research even for kids, usually the suggestion to use a proxy service is the first to come up when googling how to circumvent filters.

@ibksturm commented on Sat Apr 14 2018

hi @Esokrates
i'm myself dad of two wunderful little childrens... i blocked porn, ad malware etc. pages first on my own dns infrastructur and second on two dns dns resolvers (adguard and cleanbrowsing -> all over dnscrypt)

that's not exactly my understanding from freedom of the internet... but freedom of housekeeping (wife.......)

so i've got a other point of view on proxys and tor relays and this kind of thing... if my children (and i hope this day will come) figure out how to handle proxys etc. f**** up censorship, i'm sure and proud as daddy to teach them every right...

as i say on my own point of view, other idears are welcome :)

@Esokrates commented on Sat Apr 14 2018

@ibksturm I agree with you, I have thought about that too, especially I remember myself as a student in school I got around the firewall there too, not to do something inappropriate, but because of freedom.

But I see it this way: I do not enforce the DNS Server, I set it in my router through DHCP. The clean way around the restriction would be to set a different DNS Server and not use shady Proxy servers.

I see it this way: They are very young and should not see certain things (talking here about 10 years and younger) and I think it may be bad to open the door to easy. Using an online proxy service is way too easy to accomplish. If they are at the level to be able to research what else to try other than that I think they are ready anyway to access whatever they want.

Anyway I consider this issue to be a lower priority one, but technically its way to easy to render the filtering completely useless without any knowledge at all.

No videos will play on Cartoon Network Roku App when using Adguard DNS on main router. All videos will only show "Something went wrong" screen. Confirmed by switching back to ISP DNS, and Cartoon Network Roku app functions normally again.

Wrong place lmfao

The Adguard DNS family filter on my filter blocks the https://teenageengineering.com/ domain, which is a website for a Swedish synth maker company. Their alternative domain https://teenage.engineering/ does work.

What exactly is the difference between the 2 entries you have for DNSCrypt? One is using DNSCrypt+DoH and the other isn't?

hello ad guard thanks for the dns and family filter but there is a problem in YouTube when restricted mode is forced on there is clean videos we cant see and clean comments too how can i solve this problem thanks

Здравствуйте. Планируете ли вы добавить поддержку сайтов *.lib для Adguard DNS?

ID: 2254965

Looks like the connection failed somewhere inside NTT. I am in Taiwan.

traceroute to 176.103.130.130 (176.103.130.130), 30 hops max, 60 byte packets
 1  * * *
 2  * * *
 3  103.31.197.81 (103.31.197.81)  2.126 ms  2.085 ms  1.927 ms
 4  103.31.197.121 (103.31.197.121)  0.870 ms  0.832 ms  0.797 ms
 5  201-84-21-113-static.chief.net.tw (113.21.84.201)  1.734 ms  1.706 ms  2.626 ms
 6  LYR.17.chief.net.tw (223.26.65.17)  1.564 ms LYR.17.chief.net.tw (223.26.66.17)  1.257 ms LYR.17.chief.net.tw (223.26.65.17)  1.187 ms
 7  80.77.2.197 (80.77.2.197)  1.143 ms  1.567 ms  1.503 ms
 8  xe-0-2-0.0.ejr02.tpe001.flagtel.com (62.216.128.182)  31.412 ms  31.353 ms  31.323 ms
 9  ae0.0.pjr03.wad001.flagtel.com (62.216.128.93)  29.263 ms ae3.0.pjr02.wad001.flagtel.com (85.95.27.101)  29.625 ms  29.524 ms
10  ae2.0.eji01.tok002.flagtel.com (85.95.25.98)  31.478 ms ae0.0.eji01.tok002.flagtel.com (85.95.27.66)  31.392 ms  31.642 ms
11  61.213.179.73 (61.213.179.73)  35.588 ms  32.344 ms  31.672 ms
12  ae-7.r00.tokyjp08.jp.bb.gin.ntt.net (129.250.2.58)  31.609 ms ae-8.r01.tokyjp08.jp.bb.gin.ntt.net (129.250.2.68)  32.254 ms  32.209 ms
13  ae-1.a00.tokyjp03.jp.bb.gin.ntt.net (129.250.5.51)  48.149 ms ae-2.a00.tokyjp03.jp.bb.gin.ntt.net (129.250.5.55)  47.690 ms ae-1.a00.tokyjp03.jp.bb.gin.ntt.net (129.250.5.51)  47.644 ms
14  * * *
15  * * *
16  * * *
17  * * *
18  * * *
19  * * *
20  * * *
21  * * *
22  * * *
23  * * *
24  * * *
25  * * *
26  * * *
27  * * *
28  * * *
29  * * *
30  * * *

Another traceroute from Hinet works:

Tracing the route to 176-103-130-130.dns.adguard.com (176.103.130.130)

  1 TPDB-3516.hinet.net (210.65.161.22) 4 msec 0 msec 4 msec
  2 TPDT-3011.hinet.net (220.128.1.146) 4 msec 4 msec 4 msec
  3 tpdb-3021.hinet.net (220.128.24.182) 4 msec 0 msec 4 msec
  4 r4103-s2.tp.hinet.net (220.128.1.13) 0 msec 4 msec 0 msec
  5 r4003-s2.tp.hinet.net (220.128.3.145) 4 msec
    r4003-s2.tp.hinet.net (220.128.3.249) 0 msec
    r4003-s2.tp.hinet.net (220.128.3.145) 8 msec
  6 xe-0-0-0-3-2.r02.osakjp02.jp.bb.gin.ntt.net (129.250.66.117) 48 msec
    xe-0-0-0-3-6.r02.osakjp02.jp.bb.gin.ntt.net (129.250.8.165) 36 msec 36 msec
  7 ae-3.r24.osakjp02.jp.bb.gin.ntt.net (129.250.2.41) 40 msec 40 msec
    ae-3.r25.osakjp02.jp.bb.gin.ntt.net (129.250.2.129) 36 msec
  8 ae-5.r31.tokyjp05.jp.bb.gin.ntt.net (129.250.7.80) 44 msec 36 msec
    ae-5.r30.tokyjp05.jp.bb.gin.ntt.net (129.250.7.78) 40 msec
  9 ae-2.r02.tokyjp05.jp.bb.gin.ntt.net (129.250.3.22) 44 msec
    ae-3.r02.tokyjp05.jp.bb.gin.ntt.net (129.250.3.28) 40 msec
    ae-2.r02.tokyjp05.jp.bb.gin.ntt.net (129.250.3.22) 40 msec
 10 ce-0-14-0-1.r02.tokyjp05.jp.ce.gin.ntt.net (120.88.54.98) 56 msec 48 msec 44 msec
 11  *  *  * 
 12  *  *  * 
 13 176-103-130-130.dns.adguard.com (176.103.130.130) 36 msec 48 msec 40 msec

Android Pixel 3 XL on Pie using Adguard DNS over TLS. I (and others from Reddit) am experiencing intermittent soft reboots several times a day.

@adguard-bot commented on Sat Jul 27 2019

Issue URL (Incorrect Blocking)

https://www.zennioptical.com/p/tr-rectangle-eyeglass-frames/20189?skuId=2018923

Comment

Username: @goodjohnjr

When I have Adguard DNS enabled the Try On feature (that let's you try glasses on some preset 3D models) at the Zenni Optical website will not work, and this is what happens in each browser:

Microsoft Edge is blocking this feature because it is not signed by a valid security certificate.

Mozilla Firefox is blocking this feature because of a possible security risk.

Google Chrome and Brave Web Browser show a gray box with a sad face.

When I disable Adguard DNS the Try On feature will work in all of those browsers except for Microsoft Edge which still is blocking this feature because it says that is not signed by a valid security certificate.

Screenshots

System configuration

@Alex-302 commented on Thu Aug 01 2019

Hi. I can reproduce it, but cannot find why it is not working. I checked with AdGuard Home with AdGuard Simplified domain names filter, and the site woks as it should. Blocked domains are the same.
Could you please check with AdGuard Home?

@goodjohnjr commented on Fri Aug 02 2019

Hi. I can reproduce it, but cannot find why it is not working. I checked with AdGuard Home with AdGuard Simplified domain names filter, and the site woks as it should. Blocked domains are the same.
Could you please check with AdGuard Home?

Hello Alex-302,

I do not have Adguard Home, I was using Adguard DNS in my router at the time, and I was using the default Adguard DNS IP Addresses.

Thank you,
-John Jr

While restricted mode in youtube is useful for kids, it can be a pain to use for an environment of adults due to lots of false positives on youtube, so can we have a variant of family filter without forced youtube restricted mode?
Or if not possible is there a way to bypass it while still using family filter? thanks.

Wouldn’t a server in Istanbul or Ankara be very beneficial for the area? Not just for Turkey. I know lots of people who would directly switch to AG DNS if it were to be faster than Cloudflare DNS. I know it’s not possible everywhere but I saw a gap when I looked at the map with server locations.

Please visit this https://nextdns.io
User can creat owner dns with personal rules

I'm trying to run a dns-over-tls client in Java. For most servers it works quite well, for AdGuard however I get an EOFException when trying to read the answer to my question. Below is a simple example. Connecting to any other server (dns.quad9.net, dns.google, ...) works correctly and prints the proper received answer. The EOFException occurs in readUnsignedShort(), indicating that no response to the query is sent. Does this DoT server require me to wrap the DNS message in an udp packet?

val socket = SSLSocketFactory.getDefault().createSocket() as SSLSocket
socket.connect(InetSocketAddress("dns.adguard.com", 853))

// Create a question
val msg = DnsMessage.builder()
        .setId(12345678)
        .addQuestion(Question("google.com", Record.TYPE.A))
        .setQrFlag(false)
        .setRecursionDesired(true).build()
println(msg)

// Send the question
val dnsData = msg.toArray()
val outputStream = DataOutputStream(socket.outputStream)
outputStream.writeShort(dnsData.size) // The message has to be prefixed by the length: https://tools.ietf.org/html/rfc7858#section-3.3
outputStream.write(dnsData)
outputStream.flush()

// Receive the answer
val inStream = DataInputStream(socket.inputStream)
val readData = ByteArray(inStream.readUnsignedShort())
inStream.read(readData)

// Print the received answer
val response = DnsMessage(readData)
println(response)

My assumption that no data is transmitted seems to be backed up by wireshark:

Feel free to close if unrelated.

@TPS commented on Fri Jun 01 2018

Every few weeks, AGDNS will go down for me. I'd love to have dedicated (even automated), authoritative page (on an independent server, naturally) that shows what, if any issues, AGDNS is detected as having.

A great example close-to-home, as-it-were: https://status.github.com/

I see you have Singapore servers (AdguardTeam/AdGuardHome#223 (comment)).

But if I ping from Singapore, 176.103.130.130-131's response is ~70ms and traceroute goes to Russia. (anycast issue?)

What's your actual Adguard DNS Singapore IP addresses for manual config?

Few hours ago Adguard DNS stopped working completly, no webpages load, everything works after changing to 1.1.1.1

Everytime I set my PC to use AdGuard DNS Firefox logs out periodically. Using Cloudflare DNS seems to fix the issue so it might be related to AdGuard DNS.

Issue: Traffic gets infinitely looped when AdGuard DNS is enabled.

Config: Unspecified Keenetic router w/AdGuard DNS, standard mode.

Hey,
Here in German https://adguard.com/de/adguard-dns/overview.html

Under „was ist DNSCrypt?“ it‘s missing a „c“ in „nachträglihem“ :)

_{Sent with GitHawk}

@ameshkov, последнее время постоянные сбои в работе дефолтных серверов через DoT:
https://yadi.sk/i/5wDzoFXMeUr6Hg

Время по логам: -3 часа от московского. Работа в режиме "Strict Profile", клиент DoT - Stubby (версия 0.2.6, Entware). Вывод echo | openssl11 s_client -connect 176.103.130.131:853:
New, TLSv1.2, Cipher is ECDHE-RSA-CHACHA20-POLY1305
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-CHACHA20-POLY1305
Session-ID: B7EA2A4C8A90C0132BD0C9A4BA4969C20E194379232395B1ABA224775C69C129
Session-ID-ctx:
Master-Key: BB8BAD51BF34FD08131D9DD48384B9869AE3997962178B5AE0BBEFC90DF13EE7E225CF3D9F63ED1BE08AF36CD198065C
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1565541292
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no

Настройки Stubby:
tls_min_version: GETDNS_TLS1_2
tls_ciphersuites: "TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256"

DNSSEC включен через dnsmasq. Какие ещё данные предоставить для устранения неполадки?

Спасибо.

Setup:

Behavior with AdGuard DNS:

• Syncing the smart plug with Kasa app would work, although took a few tries

• Turning on and off the Kasa smart plug with the Kasa app worked only when I was connected to WiFi, not cellular only

• Turning on and off the Kasa smart plug with Google Home app worked for the first 15-30 minutes after syncing with Kasa, but then the plug “timed out” (?) and was showing as non-responsive on the Google Home app

• Going back to the Kasa app and turning on/off the plug allowed control from the Google Home for another 15-30 minutes before becoming unresponsive again

Behavior without AG DNS:

• Syncing the smart plug to WiFi with Kasa app worked flawlessly the first time

• Turning on and off the plug with the Kasa app worked even when only on cellular

• Turning on and off the plug with Google Home app works flawlessly and it does not become unresponsive

Link to the original Reddit thread: https://www.reddit.com/r/Adguard/comments/amfj16/adguard_dns_blocks_google_home_smart_plug/

Customer id: 2129191
Reproduced: Android (nightly app), AdGuard default DNS (DoH)

Site: bugsnag.com

I love the adblock DNS product! Good work! I also love the idea of adblock DNS over HTTPS but unfortunately its not always working for me.

I am using dnsmasq and cloudflared to provide dns for my home network. When I point cloudflared to cloudflare (edit /etc/default/cloudflared so that it has only this line uncommented:

CLOUDFLARED_OPTS=--port 5053 --upstream https://1.1.1.1/dns-query

Then dig +short www.google.com always gets an answer.

If instead I put this line in /etc/default/cloudflared

CLOUDFLARED_OPTS=--port 5053 --upstream https://dns.adguard.com/dns-query

Then dig +short www.google.com will sometimes return an answer or sometimes it returns nothing.

systemctl status cloudflared returns the following error:

systemctl status cloudflared

● cloudflared.service - cloudflared DNS over HTTPS proxy
Loaded: loaded (/usr/lib/systemd/system/cloudflared.service; enabled; vendor preset: disabled)
Active: active (running) since Tue 2019-04-30 14:46:51 EDT; 1min 2s ago
Main PID: 20593 (cloudflared)
Tasks: 19 (limit: 4915)
Memory: 8.7M
CGroup: /system.slice/cloudflared.service
└─20593 /usr/local/bin/cloudflared proxy-dns --port 5053 --upstream https://dns.adguard.com/dns-query

Apr 30 14:47:47 admin.cluster.net cloudflared[20593]: time="2019-04-30T14:47:47-04:00" level=error msg="failed to connect to an HTTPS backend "https://dns.adguard.com/dns-query\"" error="failed to perform an >
Apr 30 14:47:50 admin.cluster.net cloudflared[20593]: time="2019-04-30T14:47:50-04:00" level=error msg="failed to connect to an HTTPS backend "https://dns.adguard.com/dns-query\"" error="failed to perform an >
Apr 30 14:47:50 admin.cluster.net cloudflared[20593]: time="2019-04-30T14:47:50-04:00" level=error msg="failed to connect to an HTTPS backend "https://dns.adguard.com/dns-query\"" error="failed to perform an >
Apr 30 14:47:50 admin.cluster.net cloudflared[20593]: time="2019-04-30T14:47:50-04:00" level=error msg="failed to connect to an HTTPS backend "https://dns.adguard.com/dns-query\"" error="failed to perform an >

The entire error from journalctl is:

Apr 30 14:51:10 admin.cluster.net cloudflared[20680]: time="2019-04-30T14:51:10-04:00" level=error msg="failed to connect to an HTTPS backend "https://dns.adguard.com/dns-query\"" error="failed to perform an HTTPS request: Post https://dns.adguard.com/dns-query: net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)"

Sometimes, cloudflared will successfully start when pointed to dns.adguard.com but then will fail after just a couple digs.

Is there a better DoH package than cloudflared? Happy to switch if there is something that works better with adguard. cloudflared works perfectly with cloudflare but without the ad blocking...

Let me know if you want to see any other logs or have some testing I can try to make this more stable.

Thanks!
Mike