Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upstream DNS over QUIC has failed in v0.107.39 #6306

Closed
4 tasks done
donfeduardo opened this issue Oct 12, 2023 · 1 comment
Closed
4 tasks done

Upstream DNS over QUIC has failed in v0.107.39 #6306

donfeduardo opened this issue Oct 12, 2023 · 1 comment
Labels
duplicate Duplicate or merged issues.

Comments

@donfeduardo
Copy link

Prerequisites

Platform (OS and CPU architecture)

FreeBSD, AMD64 (aka x86_64)

Installation

Custom package (OpenWrt, HomeAssistant, etc; please mention in the description)

Setup

On a router, DHCP is handled by the router

AdGuard Home version

v0.107.39

Action

Tested upstreams using button in UI

Expected result

Tests should pass

Actual result

Error: Server "quic://dns.adguard-dns.com": could not be used, please check that you've written it correctly

Additional information and/or screenshots

AdGuard Home running on OPNsense firewall as a resolver only for certain devices in the network. This problem seems to have started immediately after updating to v0.107.39. I originally did not have any fallback servers defined and so all outbound requests were (incorrectly) going to my local resolver (and being appended with '.mydomain.com' in the search).

I have now added another resolver to the main configuration and added fallbacks, and they all work correctly. I tried adding a different QUIC server and got the same failure in the UI. With other resolvers configured everything seems to be working, so it seems the error is specifically with QUIC.

I looked at the firewall logs and there's no indication the firewall is blocking the request or reply (and in fact it shouldn't, because the origin/destination are the firewall itself, open by rule).

Verbose log attached.

adguard_test_upstream.txt
@ainar-g
Copy link
Contributor

ainar-g commented Oct 12, 2023

Thank you for the log! Unfortunately, there aren't any QUIC-related errors in the log. In fact, the connection seems to be successful:

[debug] dnsforward: checking if upstream "quic://dns.adguard-dns.com" works
[debug] bootstrap: dialing 94.140.14.14:853 (1/4)
[debug] bootstrap: connection to 94.140.14.14:853 succeeded in 47.892µs

HTTP/3 upstreams seem to be affected in this release as well, so I'll merge this one into #6301, if you don't mind.

@ainar-g ainar-g closed this as not planned Won't fix, can't repro, duplicate, stale Oct 12, 2023
@ainar-g ainar-g added the duplicate Duplicate or merged issues. label Oct 12, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
duplicate Duplicate or merged issues.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ainar-g @donfeduardo