Inconsistent DNS Issues Using DNS over TLS w/ Discord, Steam, Twitch Clients
Luca Fusi
ldfusi at gmail.com
Thu Nov 12 17:53:11 UTC 2020
Hello folks,
I've got Unbound set upon OpenWRT in such a way that it works with odhcpd,
which is one of the configurations referenced on this page:
https://github.com/openwrt/packages/blob/openwrt-19.07/net/unbound/files/README.md
The goal was to be able to use DNS over TLS.
I'm using all of this in tandem with an OpenVPN configuration, and I'm
having very inconsistent results in trying to connect to a couple of
services (namely Twitch, Discord, Steam) using their Windows app
counterparts with this configuration. Sometimes, it all works fine, but
very often it doesn't. Restarting all services and the router won't fix it
in times when it's being stubborn, and shifting various DNS validation
servers around (e.g. trying Google vs. Cloudflare, scrapping the DNS server
provided by ProtonVPN) doesn't seem to have an effet either. It feels truly
random to me.
In this state, everything in my browser and most desktop apps (Slack) work
fine. But as for the services mentioned (Steam, Discord, Twitch) the only
way I'm able to connect to them is by connecting to my VPN provider using a
Windows client (which bypasses the adblocking etc. I've got set up on the
router, which I'd like to work as an umbrella for all devices in the home),
or by navigating to their browser-based counterparts (I'm thinking the way
that Firefox gets around these issues via DNS over HTTPS).
Weirdly enough, disabling TLS in my zone file doesn't guarantee that this
works though; it's just one of the best leads I have besides 'seems like an
unbound related issue'.
I've had a decent discussion with one member of the OpenWRT forums and
posted several dig logs there:
https://forum.openwrt.org/t/cant-access-or-address-some-sites-twitch-steam-discord-clients-w-unbound-installed/78778
I'm not sure where else to seek advice re: unbound so I thought I'd give
this list a shot. There is probably something fairly elementary I'm missing.
lmk,
Luca
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.nlnetlabs.nl/pipermail/unbound-users/attachments/20201112/ad4dac70/attachment.htm>
More information about the Unbound-users
mailing list