Wireless Devices Not Filtering
I have set up Open DNS and added my ISP IP (as instructed). I have a Windows 7 machine plugged into my AmpliFi wireless router and configured with Open DNS (which is working great). I have also set up my AmpliFi wireless router to point to the Open DNS Primary and Secondary addresses (208.67.222.222, 208.67.220.220 respectively). The problem, however, is that none of my wireless devices are being filtered. I have tested each wireless device by going to https://welcome.opendns.com/ and on each device a message indicates that I am not using Open DNS. I am not sure what else I need to do to get my wireless devices filtering appropriately. Can anyone assist?
-
Do you have dual-stack connectivity (IPv4 and IPv6)? In this case you must also configure the IPv6 side from the following list of addresses: ::ffff:d043:dedc ::ffff:d043:dcde ::ffff:d043:dede ::ffff:d043:dcdc
If it is not this, copy & paste the complete plain text output of the following diagnostic commands to here:
nslookup -type=txt debug.opendns.com.
nslookup whoami.akamai.net.
netsh interface ipv4 show config -
Good that you posted commands from the two computers. The situation is totally different.
Your Windows PC attempts to use the following DNS service:
Server: UnKnown
Address: 2601:681:4c00:3d77:22c9:d0ff:fe12:e36dThis is clearly not an OpenDNS address, but some strange IPv6 address. And as you don't have IPv6 connectivity, you don't get any response from it:
*** UnKnown can't find ....: No response from server
You have manually configured OpenDNS on the IPv4 side on the PC in the Ethernet interface, so your router's DNS settings are overwritten and ignored:
Statically Configured DNS Servers: 208.67.222.222
208.67.220.220If your router would function properly, my suggestion would be to change the IPv4 network settings on the PC to be obtained automatically via DHCP from the router, but see below. Also, uncheck the check box beside the IPv6 protocol to prevent from using non-reachable IPv6 resolvers as currently is the case, so that your PC can use the DNS servers configured for IPv4.
On your Mac the situation is different. You are using this DNS address which is your router and in principle fine:
Server: 192.168.103.1
Address: 192.168.103.1#53But your router does not forward your DNS queries to OpenDNS or any other DNS service, so you get:
*** Can't find whoami.akamai.net: No answer
It seems there is a problem with your router that you configured it incorrectly, or it has a bug. Post a screen shot of the router page where you configured OpenDNS, and also post a link to an online user manual.
Btw, the command netsh does not exist on Mac OS X, just on Windows, therefore you get:
bash: netsh: command not found
-
This looks accurate. But your router doesn't seem to do what you configured, to forward your DNS queries to OpenDNS. I would need to see the user manual.
Or your ISP intercepts your DNS traffic and redirects it to their own DNS service. The following command can check the latter:
nslookup -type=txt which.opendns.com. 208.67.220.220
If this returns "I am not an OpenDNS resolver", then your ISP intercepts your DNS traffic.
As your ISP seems to be Comcast, it is worth to read this:
https://support.opendns.com/hc/en-us/community/posts/115019065723
https://support.opendns.com/hc/en-us/articles/227988687 -
I should mention for other readers that rjpack deleted most of his own comments, so reading through this thread may look strange and not easily understandable.
-
I was reading this post last night because I have the same problems. My PC, mac, and chromebook on my network are all being filtered but all of our iPhones, using the latest OS, were NOT being filtered. I finally figured out that the new iCloud Private relay somehow gets around the Open DNS filtering. Once I turned that off in settings, my kids iphones were now being filtered. Just make sure you are using Screentime on you kid's phones and lock "Account Changes" so they can't turn Private Relay back on. Hope this helps someone.
Please sign in to leave a comment.
Comments
8 comments