Customizable bootstrap servers in mobileconfig API #3607
Comments
|
Hello. The docs say that those addresses are used to “determine the server addresses”. But that presents a problem: if the bootstraps do not resolve @ameshkov, how should we support such private domain names in the mobileconfig API? Perhaps another input for custom bootstrap servers? |
|
Yeah, this indeed looks like we need a configuration profile generator that would allow customize these fields. Let's do it in v0.108 though. |
ainar-g
changed the title
|
@ameshkov, it seems like there are at least two people whose setups are broken now. Should we perhaps consider reverting the feature and reimplementing it with more customisability in v0.108.0? |
|
@ainar-g My understanding from their documentation based on help text under This will explain why original author couldn't get it working with their AGH instance when server address is set to Google's. I couldn't find many real world uses that are public. NextDNS have a profile generator where they don't set server addresses unless enable |
|
@emlimap, the original issue is #3568. From my initial understanding, apparently shared by @enxoco, those addresses are the ones that are used to resolve the hostnames in |
|
In order to get my config working on iOS I simply added the public IP address for my AdGuard server as the "Bootstrap server". Admittedly I don't have a real world iOS device to test on at the moment so the only thing I can test against is a simulator device on my Mac. This is what I have in my mobileconfig. ` Where |
|
Also this feature isn't a must have for me. In my use case I can simply just edit the mobileconfig file myself. |
|
@ainar-g Agreed. Their documentation leaves a lot for the user to figure out by themselves. It would have been nice if they had told us what would happen in various case scenarios. When connected to wifi I could see iOS trying to resolve the DoH hostname using the DNS servers provided by DHCP as the profile doesn't have any server addresses set. So I presumed it resorted to using the DNS servers it got from wifi/mobile internet. This is also how Firefox works when you enable DoH. Up until a few versions ago they let you set a bootstrap address which is more like a server address as it connects to provided IP with provided hostname. They removed boostrap address variable in It is interesting that it works for you in your tests. Let me test a few things and get back to you. @enxoco It is interesting that it doesn't work for you without setting server address. I just added a profile without one, and it works on for me on iOS 14.8. Do you use VPN on your phone by any chance? iOS prioritizes the DNS servers provided by VPN over DoH/DoT when you are connected to VPN. |
|
@emlimap Not using any VPN. Like I said I don't actually have access to a physical iOS device so my test is purely based on using the simulator. That being said, my issue could just be with how simulated devices behave. I just assumed that it would apply to an a physical iOS device as well but I have seen experienced other features (outside of AdGuard) that don't work in a simulator but work perfectly fine on a physical device. |
|
We'll release an |
|
@emlimap I had the experience that set the Adguard Home in my local network and used the other DoH in my iphone by installed mobileconfig file. Your observation is correct. If you do not provide the bootstrap DNS in the mobileconfig file, iOS will use your system network default DNS to resolve your DoH / DoT hostname. If you include in the bootstrap DNS in the mobileconfig file, then it will use bootstrap DNS to resolve your DoH / DoT hostname first. So in most of case, you do not need to add bootstrap DNS in the mobileconfig file, it will work well, unless you do not want to your network provider know what DoH / DoT you used. And only in some country, like China, the user may had the DNS hijack problem by their DNS provider which followed their government rule, so they may had the problem if they do not add the bootstrap DNS in the mobileconfig file. So, there is no need to force everyone to add the bootstrap DNS in the mobileconfig file, is better to set this as option. |
|
@enxoco, @hezhijie0327, the commit that adds AGH's addresses is in the There could still be issues, depending on how Apple devices go through the IPs. If this latest change won't make the situation better, we'll probably roll back the feature and instead include the custom field in v0.108. |
|
@ainar-g I found the problem when you added the DNS server IP addresses to the |
|
Even when I use my public IP address for |
Updates AdguardTeam#3607. Updates AdguardTeam#3568. Squashed commit of the following: commit a02f978 Author: Ainar Garipov <A.Garipov@AdGuard.COM> Date: Fri Sep 17 18:18:31 2021 +0300 home: provide correct server addrs in mobileconfig
Updates AdguardTeam#3607. Squashed commit of the following: commit 1f0a970 Author: Ainar Garipov <A.Garipov@AdGuard.COM> Date: Thu Sep 30 13:26:49 2021 +0300 home: rollback serveraddresses in mobileconfig
Have a question or an idea? Please search it on our forum to make sure it was not yet asked. If you cannot find what you had in mind, please submit it here.
Prerequisites
Please answer the following questions for yourself before submitting an issue. YOU MAY DELETE THE PREREQUISITES SECTION.
Issue Details
Expected Behavior
The latest *. mobileconfig is not working on iOS & macOS. After I installed this profile, I cannot reach any website.
<key>ServerAddresses</key>may not mean as Bootstrap DNS servers. It works on Code A but not works on Code B.Actual Behavior
Screenshots
Screenshot:
Additional Information
The text was updated successfully, but these errors were encountered: