ExpressVPN blocked with with OpenDNS

Comments

4 comments

  • Avatar
    rotblitz (Edited )

    It looks like you have the category Proxy/Anonymizer blocked with your OpenDNS settings.  If you want to access expressvpn.com, unselect this category or add expressvpn.com to your "never block" list at your dashboard.  Please note, if you use the FamilyShield addresses 208.67.222.123 and 208.67.220.123, the category Proxy/Anonymizer is always blocked, and you cannot unblock it with your dashboard settings.  You had to configure the "normal" OpenDNS resolver addresses instead: 208.67.222.222; 208.67.220.220; 208.67.222.220; 208.67.220.222

    Regarding the NET::ERR_CERT_AUTHORITY_INVALID browser warning see
    https://support.opendns.com/hc/en-us/articles/227987007

    "If I use my ISP DNS entries, the page loads correctly."

    Yes, sure, because your ISP's DNS service is not configurable.  OpenDNS is configurable, and you most likely have the Proxy/Anonymizer category blocked.  It's not OpenDNS, but just you.

    Just seeing that you posted this in the "Netgear Live Parental Controls" section of the forum.  Are you using a Netgear router with LPC enabled?  If so, your dashboard is only at https://netgear.opendns.com/
    Ensure that you delete any network at https://dashboard.opendns.com/settings/ 
    And you do not configure any resolver addresses as of above.

    If you don't have LPC enabled, then your dashboard is only at https://dashboard.opendns.com/settings/

    1
    Comment actions Permalink
  • Avatar
    woyler

    All you have said is correct and you have explained and solved my issue.  Thanks for the quick and thorough response.  Very helpful!

    0
    Comment actions Permalink
  • Avatar
    dambach

    I am trying to use OPENDNS on an ExpressVPN router with no luck.  I have configured custom DNS servers to 208.67.220.123 and 222.123 but open dns is still not being configured.  Is this service not compatible with VPNs?

    0
    Comment actions Permalink
  • Avatar
    rotblitz (Edited )

    "Compatible" is the wrong term here.  If you send all your traffic through a VPN tunnel, you will be using the DNS service configured by this VPN service unless you have a way to configure another DNS service.

    Copy & paste the complete plain text output of the following diagnostic commands to here when the VPN connection is established:

    nslookup -type=txt which.opendns.com.
    nslookup whoami.akamai.net.
    netsh interface ipv4 show config

     

    0
    Comment actions Permalink

Please sign in to leave a comment.