Jump to content
  • 6

DoQ & DoH/3 Support.

theGorgeous

Asked by theGorgeous,

 Share

Question

theGorgeous Newbie

theGorgeous

Posted
Posted

Hello y'all,

DoQ (DNS-over-Quic)

DoH/3 (DNS-over-HTTPS/3)

When keenetic development team implement these 2 features to the keenetic devices ? Because, the most popular DNS providers (Adguard, ControlD etc...) are supporting these 2 features.

Thanks in advance for community members who supporting me people.

11 answers to this question

Recommended Posts

  • 1
Namenloss Member

Namenloss

Posted
Posted

4.2 a4, hopper (KN-3810): 

Apr 13 23:56:17 https-dns-proxy
5028: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:17 https-dns-proxy
12C4: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:17 https-dns-proxy
5199: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:17 https-dns-proxy
F834: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:17 https-dns-proxy
F565: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:17 https-dns-proxy
D596: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:28 https-dns-proxy
E61E: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:28 https-dns-proxy
"https://dns.google/dns-query": too many failed requests, try to reload process
Apr 13 23:56:28 ndm
Service: "DoH "System" proxy #0": unexpectedly stopped.

Region: EU. Works for some time, after fails. AdGuard Home on a separate server works without issues with DoH and same Google DNS. 

Also still issue with bootstrap is not fixed, provider DNS is not enough, you need to add something like 1.1.1.1/8.8.8.8 . 

Screenshot 2024-04-14 at 00.07.30.png

  • 0
theGorgeous Newbie

theGorgeous

Posted
  • Author
Posted
1 minute ago, theGorgeous said:

Hello y'all,

DoQ (DNS-over-Quic)

DoH/3 (DNS-over-HTTPS/3)

When keenetic development team implement these 2 features to the keenetic devices ? Because, the most popular DNS providers (Adguard, ControlD etc...) are supporting these 2 features.

Thanks in advance for community members who supporting me people.

Please support me giving upvote. If how many upvote we would have, these features can come to the keenetic devices more early than expected.

  • 0
Le ecureuil Honored Flooder

Le ecureuil

Posted
Posted
В 14.04.2024 в 00:08, Namenloss сказал:

4.2 a4, hopper (KN-3810): 

Apr 13 23:56:17 https-dns-proxy
5028: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:17 https-dns-proxy
12C4: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:17 https-dns-proxy
5199: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:17 https-dns-proxy
F834: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:17 https-dns-proxy
F565: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:17 https-dns-proxy
D596: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:28 https-dns-proxy
E61E: "https://dns.google/dns-query": curl error message: QUIC connection has been shut down
Apr 13 23:56:28 https-dns-proxy
"https://dns.google/dns-query": too many failed requests, try to reload process
Apr 13 23:56:28 ndm
Service: "DoH "System" proxy #0": unexpectedly stopped.

Region: EU. Works for some time, after fails. AdGuard Home on a separate server works without issues with DoH and same Google DNS. 

Also still issue with bootstrap is not fixed, provider DNS is not enough, you need to add something like 1.1.1.1/8.8.8.8 . 

Screenshot 2024-04-14 at 00.07.30.png

Does it fail unrecoverable, or just makes noisy logs and reloads, but continues to work?
For bootstrap we obviously need some additional information and configuration (or at least your self-test in hidden post).

  • 0
Namenloss Member

Namenloss

Posted
Posted
53 минуты назад, Le ecureuil сказал:

Does it fail unrecoverable, or just makes noisy logs and reloads, but continues to work?
For bootstrap we obviously need some additional information and configuration (or at least your self-test in hidden post).

Test router is connected to main KN-1811 ("Titan"), 'Cloud-based content filtering and ad blocking' is not installed, remove all DNS except provider one, configure DoH Google  - Stubby is not able to bootstrap, fails immediately according to the logs. Add 1.1.1.1 as a common DNS. Use for some time (it works, able to bootstrap, able to resolve using DoH - at least DNS leak test confirms Google DNS as an upstream), after it starts to create issues as above. 

Will add self-test at evening. 

 

  • 0
Le ecureuil Honored Flooder

Le ecureuil

Posted
Posted

To be honest, I don't see any bootstrap issues.
The bootstrap takes time, and implemented as asynchronous background process. So the bootstrap repeats attempts for several times, and it can take up to 1-2 minutes. But after that in all your self-tests the bootstraps are completed successfully.

The real issue is the unavailability of QUIC, but I will fix the fallback to HTTP/2.

  • 0
Namenloss Member

Namenloss

Posted
Posted
Thanks for explanation about bootstrap, maybe should be documented somehow, I thought it should take less time.  
 
QUIC is not blocked  for sure, since https://quic.nginx.org/quic.html test can be executed endlessly with no issues. Thank you for implementing fallback. 
  • 0
Namenloss Member

Namenloss

Posted
Posted

4.2a5: 

Apr 22 12:05:21 https-dns-proxy
71CC: "https://dns.nextdns.io/xxxxxx": curl error message: Operation timed out after 3000 milliseconds with 0 bytes received (28)
Apr 22 12:05:21 https-dns-proxy
F9CB: "https://dns.nextdns.io/xxxxxx": curl error message: Operation timed out after 3001 milliseconds with 0 bytes received (28)
Apr 22 12:05:22 https-dns-proxy
0327: "https://dns.nextdns.io/xxxxxx": curl error message: Operation timed out after 3003 milliseconds with 0 bytes received (28)
Apr 22 12:05:23 https-dns-proxy
DB9E: "https://dns.nextdns.io/xxxxxx": curl error message: Operation timed out after 3001 milliseconds with 0 bytes received (28)
Apr 22 12:05:23 https-dns-proxy
5C31: "https://dns.nextdns.io/xxxxxx": curl error message: Operation timed out after 3001 milliseconds with 0 bytes received (28)
Apr 22 12:05:23 https-dns-proxy
"https://dns.nextdns.io/xxxxxx": too many failed requests, try to downgrade to HTTP/2

1 router KN-3810, 1 wired client...  just connected  to the router

  • 0
ru.celebi Member

ru.celebi

Posted
Posted

Does this feature really work? If it does, what format should be used for DoQ and DoH/3 specifically with NextDNS or AdGuard DNS?

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Answer this question...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to question listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...