DNS stop working #6817
Comments
|
I just noticed that I set "Use AdGuard browsing security web service", I have to turn it off. Looks like the AdGuard DNS server has issue now. |
|
I don't have nor had the "Use AdGuard browsing security web service" enabled. When it previously went wrong i saw: https://1.1.1.1:443/dns-query: Get "https://1.1.1.1:443/dns-query?dns=AAABAAABAAAAAAABB2dhdGV3YXkHZGlzY29yZAJnZwAAAQABAAApCAAAAIAAAAA\": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)" |
|
I rebooted multiple time, the router, restart the AdguardHome service. But it still happened. Now, I disabled the "Use AdGuard browsing security web service". Then, there will no DNS proxy, and the issue haven't happened for few days. The issue just started from Last weekend about Saturday night. |
I have same thing happening to me after the update, server just randomly crash, stoping and restarting the service doesn't do anything only full reboot of the machine in my case. |
|
Since updating to v0.107.45 AdGuard home is blocking multiple services and websites. I also tried to disable all the blocklist, but this does not help. AdGuard keeps blocking traffic even when protection is disabled. |
Same for me. |
Only restored a stable internet connection by completely shutting down AdGuard in home assistant |
Same. Not sure if OP uses HomeAssistant though. I do. Had to shut down AdGuard add-on. |
|
This just started happening to me. I've made no changes to my config. I have one instance running on my Synology NAS, and one instance running as a Home Assistant add-on. Both are exhibiting the same behavior. Both are running v0.107.46. I've tried restarting the containers, as well as rebooting the host hardware. Neither resolves the issue. To restore internet, I've just pointed my router at other DNS servers. Log excerptUpstream DNS serversResult when hitting "Test Upstreams" button
|
|
Hi @xliang76, thanks for the report. Also:
|
|
Same problem v0.107.48 |
|
same exact issue as @willyjfarrell, same exact setup (yes, really). container logs are full of this crap:
|
ghost
mentioned this issue
|
it keeps happening in and out throughout the day, strongly thinking about switching to pihole due to this. i can't have the internet down constantly due to DNS... |
|
Same here |
|
Same here. 2024/06/20 03:10:43.529244 [error] dnsproxy: https://family.adguard-dns.com:443/dns-query: response received over tcp: "requesting https://family.adguard-dns.com:443/dns-query: Get "https://family.adguard-dns.com:443/dns-query?dns=AAABAAABAAAAAAAABGZlZGYEOTgwOQJwYwNkbnMHYWRndWFyZANjb20AABAAAQ\": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)" |
|
I have this error with cloudflare dns i tried to change upstream here my config yaml http_proxy: ""
language: fr
theme: dark
dns:
bind_hosts:
- 0.0.0.0
port: 53
anonymize_client_ip: false
ratelimit: 100
ratelimit_subnet_len_ipv4: 24
ratelimit_subnet_len_ipv6: 56
ratelimit_whitelist: []
refuse_any: true
upstream_dns:
- 9.9.9.9
- 149.112.112.112
- 2620:fe::fe
- 2620:fe::9
upstream_dns_file: ""
bootstrap_dns:
- 1.1.1.1
- 1.0.0.1
- 9.9.9.9
fallback_dns: []
upstream_mode: load_balance
fastest_timeout: 1s
allowed_clients: []
disallowed_clients: []
blocked_hosts:
- version.bind
- id.server
- hostname.bind
trusted_proxies:
- 127.0.0.0/8
- ::1/128
cache_size: 4096
cache_ttl_min: 300
cache_ttl_max: 86400
cache_optimistic: true
bogus_nxdomain: []
aaaa_disabled: false
enable_dnssec: true
edns_client_subnet:
custom_ip: ""
enabled: false
use_custom: false
max_goroutines: 300
handle_ddr: true
ipset: []
ipset_file: ""
bootstrap_prefer_ipv6: false
upstream_timeout: 10s
private_networks: []
use_private_ptr_resolvers: true
local_ptr_upstreams: []
use_dns64: false
dns64_prefixes: []
serve_http3: false
use_http3_upstreams: false
serve_plain_dns: true
hostsfile_enabled: true
tls:
enabled: false
server_name: ""
force_https: false
port_https: 443
port_dns_over_tls: 853
port_dns_over_quic: 784
port_dnscrypt: 0
dnscrypt_config_file: ""
allow_unencrypted_doh: false
certificate_chain: ""
private_key: ""
certificate_path: ""
private_key_path: ""
strict_sni_check: false
querylog:
dir_path: ""
ignored: []
interval: 720h
size_memory: 1000
enabled: true
file_enabled: true
statistics:
dir_path: ""
ignored: []
interval: 720h
enabled: true
filters:
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_1.txt
name: AdGuard DNS filter
id: 1720258131
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_50.txt
name: uBlock₀ filters – Badware risks
id: 1720258132
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_59.txt
name: AdGuard DNS Popup Hosts filter
id: 1720258133
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_4.txt
name: Dan Pollock's List
id: 1720258134
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_49.txt
name: HaGeZi's Ultimate Blocklist
id: 1720258135
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_27.txt
name: OISD Blocklist Big
id: 1720258136
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_3.txt
name: Peter Lowe's Blocklist
id: 1720258137
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_33.txt
name: Steven Black's List
id: 1720258138
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_23.txt
name: WindowsSpyBlocker - Hosts spy rules
id: 1720258139
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_7.txt
name: Perflyst and Dandelion Sprout's Smart-TV Blocklist
id: 1720258140
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_44.txt
name: HaGeZi's Threat Intelligence Feeds
id: 1720258141
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_6.txt
name: Dandelion Sprout's Game Console Adblock List
id: 1720258142
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_30.txt
name: Phishing URL Blocklist (PhishTank and OpenPhish)
id: 1720258143
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_12.txt
name: Dandelion Sprout's Anti-Malware List
id: 1720258144
- enabled: true
url: https://adguardteam.github.io/HostlistsRegistry/assets/filter_39.txt
name: Dandelion Sprout's Anti Push Notifications
id: 1720258145
whitelist_filters: []
dhcp:
enabled: false
interface_name: ""
local_domain_name: lan
dhcpv4:
gateway_ip: ""
subnet_mask: ""
range_start: ""
range_end: ""
lease_duration: 86400
icmp_timeout_msec: 1000
options: []
dhcpv6:
range_start: ""
lease_duration: 86400
ra_slaac_only: false
ra_allow_slaac: false
filtering:
blocking_ipv4: ""
blocking_ipv6: ""
blocked_services:
schedule:
time_zone: UTC
ids:
- tiktok
- tinder
- zhihu
- vk
- onlyfans
- douban
- iqiyi
- pinterest
- ok
- hulu
- mail_ru
- rakuten_viki
- clubhouse
- bilibili
- lazada
- mastodon
- xiaohongshu
- temu
- shein
protection_disabled_until: null
safe_search:
enabled: false
bing: true
duckduckgo: true
google: true
pixabay: true
yandex: true
youtube: true
blocking_mode: default
parental_block_host: family-block.dns.adguard.com
safebrowsing_block_host: standard-block.dns.adguard.com
safebrowsing_cache_size: 1048576
safesearch_cache_size: 1048576
parental_cache_size: 1048576
cache_time: 30
filters_update_interval: 24
blocked_response_ttl: 10
filtering_enabled: true
parental_enabled: true
safebrowsing_enabled: true
protection_enabled: true
clients:
runtime_sources:
whois: true
arp: false
rdns: true
dhcp: true
hosts: falseI've removed the 2620:fe::fe upstream since. wait and see edit : new logs, as you can see there is no 1.1.1.2 in my config it is because it is the dns by default when adguard wants to resolve PTR zone New log with new upstream dns, i have to shutdown adguard until this is fixed |
|
Hi all, I have been facing these issues for a few weeks now, extremely frustrating for me and my family. Everything works as expected until suddently, the following repeatedly fills my logs: 2024/07/18 13:15:26.289149 [error] dnsproxy: https://family.adguard-dns.com:443/dns-query: response received over tcp: "requesting https://family.adguard-dns.com:443/dns-query: Get "https://family.adguard-dns.com:443/dns-query?dns=AAABAAABAAAAAAAABDJhZGMEYjYyOAJzYgNkbnMHYWRndWFyZANjb20AABAAAQ\": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)" It will resolve itself at some point, and we many not see it until a few days later. When it happens I have to jump into my router to change the DNS servers. I have been using AdguardHome for years, does anyone know what is causing it? I tried downgrading to v0.107.50 but obviously this seems to be an issue with their servers.... |
|
There's several issues here. Requests to I created a separate issue with more details about that: #7175 Failing requests to other servers could mean that your internet is flaky, or that that DNS server is down. You can minimize the impact of unavailable upstream DNS servers by making sure you have multiple upstreams (e.g both Quad9 and Cloudflare) and are using the "Parallel requests" option:
|
|
that is simply not true. there is clearly an issue in respecting the settings.
I have "browsing security web service" disabled (since i first installed adguard), as most of the other users with problems in this issue.
I have multiple upstream DNS servers and "Parallel requests" enabled. The issue is real, its not just bad settings. |
|
|
ainar-g
added
question
and removed
waiting for data
@ainar-g This should be configurable in the UI.
@rursache - If you're still seeing failed requests to Is a request to the browsing security service. It's a DNS over HTTPS (DoH) lookup for a subdomain of AdGuardHome/internal/home/home.go Lines 360 to 362 in cdf970f |
|
Hi all, AdGuard Home runs at home on a rpi 3 for years now, dhcp server sends his IP as dns servers to every client connexion. Before blaming AdGuard or upstream DNS : I had EXACTLY similar problem, only first upstream DNS seemed unreachable (down, no ping, not possible to resolve nslookup queries). Others upstream dns where ok to answer queries from local (AdGuard) ssh session with nslookup, but distant clients could not resolve anything. Problem went away after rebooting this **** TP-Link Deco X50-5G... Regards, |
Prerequisites
I have checked the Wiki and Discussions and found no answer
I have searched other issues and found no duplicates
I want to report a bug and not ask a question or ask for help
I have set up AdGuard Home correctly and configured clients to use it. (Use the Discussions for help with installing and configuring clients.)
Platform (OS and CPU architecture)
FreeBSD, ARM64
Installation
GitHub releases or script from README
Setup
On a router, DHCP is handled by the router
AdGuard Home version
v0.107.45
Action
Replace the following command with the one you're calling or a
description of the failing action:
If the protection is on, there is no output:
nslookup -debug -type=a 'www.example.com' $SERVER_IP
;; connection timed out; no servers could be reached
I have to disable the protection:
nslookup -debug -type=a 'www.example.com' $SERVER_IP
Server: $SERVER_IP
Address: $SERVER_IP#53
Non-authoritative answer:
Name: www.example.com
Address: 93.184.216.34
Expected result
I update to v0.107.45, after few days, it suddenly stop works. I didn't change anything.
Actual result
I have disable the protection, then it will work, otherwise, the DNS failed. and there a lot of error log in the router:
Tue Mar 12 08:34:31 2024 daemon.err AdGuardHome[12935]: 2024/03/12 13:34:31.428133 [error] dnsproxy: https://family.adguard-dns.com:443/dns-query: response received over tcp: "requesting https://family.adguard-dns.com:443/dns-query: Get \"https://family.adguard-dns.com:443/dns-query?dns=AAABAAABAAAAAAAABDBhYjMEYzMxMARiMGNhAnNiA2RucwdhZGd1YXJkA2NvbQAAEAAB\": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)" Tue Mar 12 08:34:31 2024 daemon.err AdGuardHome[12935]: 2024/03/12 13:34:31.433124 [error] dnsproxy: https://family.adguard-dns.com:443/dns-query: response received over tcp: "requesting https://family.adguard-dns.com:443/dns-query: Get \"https://family.adguard-dns.com:443/dns-query?dns=AAABAAABAAAAAAAABDYwZjQEYmY4NAJzYgNkbnMHYWRndWFyZANjb20AABAAAQ\": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)" Tue Mar 12 08:34:31 2024 daemon.err AdGuardHome[12935]: 2024/03/12 13:34:31.433179 [error] dnsproxy: https://family.adguard-dns.com:443/dns-query: response received over tcp: "requesting https://family.adguard-dns.com:443/dns-query: Get \"https://family.adguard-dns.com:443/dns-query?dns=AAABAAABAAAAAAAABDYwZjQEYmY4NAJzYgNkbnMHYWRndWFyZANjb20AABAAAQ\": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)"Additional information and/or screenshots
No response
The text was updated successfully, but these errors were encountered: