Hi.
Thanks for your great app.
There is a bug that I found couple of days ago.
When I set the DoH on a server, app will automatically push 8.8.8.8 as DNS server intead of custom DoH query, the DNS leak websites shows Google public DNS or the VPN's default pushed DNS.
DoH bug.
-
- Posts: 4
- Joined: Wed Oct 06, 2021 8:36 am
DoH bug.
- Attachments
-
- Screenshot_20211006-120853_VPN Client Pro.jpg (295.81 KiB) Viewed 1939 times
-
- Screenshot_20211006-120920_Firefox.jpg (476.37 KiB) Viewed 1939 times
Re: DoH bug.
Hello,
thanks for the bug report.
However, this behavior is by design.
The DNS 8.8.8.8 and route 8.8.8.8/32 are added to make sure DNS requests are sent over the VPN.
The DNS 8.8.8.8 and pushed DNS are only used to resolve the host name in the DoH URL, all other DNS requests are captured and sent to the DoH URL.
Maybe the DNS leak websites show the DNS requests used to resolve the host name in the DoH URL (In your case doh-sg.blahdns.com)
thanks for the bug report.
However, this behavior is by design.
The DNS 8.8.8.8 and route 8.8.8.8/32 are added to make sure DNS requests are sent over the VPN.
The DNS 8.8.8.8 and pushed DNS are only used to resolve the host name in the DoH URL, all other DNS requests are captured and sent to the DoH URL.
Maybe the DNS leak websites show the DNS requests used to resolve the host name in the DoH URL (In your case doh-sg.blahdns.com)
-
- Posts: 4
- Joined: Wed Oct 06, 2021 8:36 am
Re: DoH bug.
Before the update DNS leak test websites were showing the blahdns servers and DNS queries were blocking the ads. But now all the applications are showing the ads, because of the pushed Google public DNS.
- Attachments
-
- Screenshot_20211006-140227_DNSDig.jpg (286.33 KiB) Viewed 1923 times
-
- Screenshot_20211006-135615_MX Player.jpg (534.49 KiB) Viewed 1924 times
-
- Screenshot_20211006-135633_File Manager +.jpg (331.25 KiB) Viewed 1924 times
-
- Posts: 4
- Joined: Wed Oct 06, 2021 8:36 am
Re: DoH bug.
Another example with my own VPN server.
My VPN server's default DNS is 108.61.10.10 wich is for the Constant Company
My VPN server's default DNS is 108.61.10.10 wich is for the Constant Company
- Attachments
-
- Screenshot_20211006-141152_Firefox.jpg (329.36 KiB) Viewed 1920 times
Re: DoH bug.
I just finished giving the tests and on my side everything works fine. The DNS requests are sent only to the DoH URL.
Try changing the VPN profile and entering a wrong DoH URL. If everything works fine, you may no longer be able to resolve any host name and the VPN log should shown the DoH errors...
Try changing the VPN profile and entering a wrong DoH URL. If everything works fine, you may no longer be able to resolve any host name and the VPN log should shown the DoH errors...
-
- Posts: 4
- Joined: Wed Oct 06, 2021 8:36 am
Re: DoH bug.
The problem is because of OpenVpn v.2.5.3. It will work just with v.2.4.9.
Can you make it optional to push 8.8.8.8 in routes?
Can you make it optional to push 8.8.8.8 in routes?
- Attachments
-
- Screenshot_20211006-181022_Brave.jpg (550.34 KiB) Viewed 1907 times
Re: DoH bug.
On my side it works also with OpenVPN 2.5.3.
Anyway the problem is not related to the 8.8.8.8 route.
Maybe you are using a browser with secure DNS feature like Chrome or this option is enabled in Android settings.
On Chrome this option is enabled by default.
Anyway the problem is not related to the 8.8.8.8 route.
Maybe you are using a browser with secure DNS feature like Chrome or this option is enabled in Android settings.
On Chrome this option is enabled by default.