liang-hiwin
commented
4 years ago 
Closed liang-hiwin closed 4 years ago
liang-hiwin
commented
4 years ago
ShreyasZare
commented
4 years ago Check logs for details on this error. It seems that your server is failing to resolve domain name of the DoH server. This has something to do with your local network.
For that TLS query, there is no resolution done since its IP address is already given in brackets which is used.
liang-hiwin
commented
4 years ago Check logs for details on this error. It seems that your server is failing to resolve domain name of the DoH server. This has something to do with your local network.
For that TLS query, there is no resolution done since its IP address is already given in brackets which is used.
[2020-02-18 14:19:04 UTC] Logging started. [2020-02-18 14:19:04 UTC] [113.12.163.202:58630] [admin] Log file was deleted: 2020-02-18 [2020-02-18 14:19:04 UTC] [127.0.0.1:44304] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:05 UTC] [127.0.0.1:46945] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:06 UTC] [127.0.0.1:59373] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:07 UTC] [127.0.0.1:55870] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:08 UTC] [127.0.0.1:36013] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:09 UTC] [127.0.0.1:46491] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:10 UTC] [127.0.0.1:38012] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:11 UTC] [127.0.0.1:44500] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:12 UTC] [127.0.0.1:38779] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:13 UTC] [127.0.0.1:56808] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:14 UTC] [127.0.0.1:42431] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:15 UTC] [127.0.0.1:48661] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:16 UTC] [127.0.0.1:59734] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:17 UTC] [127.0.0.1:33355] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:18 UTC] [127.0.0.1:46253] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:19 UTC] [127.0.0.1:45209] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:20 UTC] [127.0.0.1:44926] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:21 UTC] [127.0.0.1:37841] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:22 UTC] [127.0.0.1:56654] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:23 UTC] [127.0.0.1:56824] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:24 UTC] [127.0.0.1:49856] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:25 UTC] [127.0.0.1:51844] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:26 UTC] [127.0.0.1:55463] [UDP] QNAME: a.root-servers.net; QTYPE: A; QCLASS: IN; RCODE: NoError; ANSWER: [198.41.0.4] [2020-02-18 14:19:27 UTC] [127.0.0.1:46856] [UDP] QNAME: cloudflare-dns.com; QTYPE: A; QCLASS: IN; RCODE: ServerFailure; ANSWER: [] [2020-02-18 14:19:27 UTC] [113.12.163.202:58672] TechnitiumLibrary.Net.Dns.DnsClientException: Name server returned error. DNS RCODE: ServerFailure (ServerFailure) at TechnitiumLibrary.Net.Dns.DnsClient.ParseResponseA(DnsDatagram response) in Z:\Technitium\Projects\TechnitiumLibrary\TechnitiumLibrary.Net\Dns\DnsClient.cs:line 755 at TechnitiumLibrary.Net.Dns.DnsClient.ResolveIP(String domain, Boolean preferIPv6) in Z:\Technitium\Projects\TechnitiumLibrary\TechnitiumLibrary.Net\Dns\DnsClient.cs:line 1282 at TechnitiumLibrary.Net.Dns.NameServerAddress.ResolveIPAddress(NameServerAddress[] nameServers, NetProxy proxy, Boolean preferIPv6, Int32 retries, Int32 timeout, DnsTransportProtocol protocol) in Z:\Technitium\Projects\TechnitiumLibrary\TechnitiumLibrary.Net\Dns\NameServerAddress.cs:line 386 at DnsServerCore.WebService.ResolveQuery(HttpListenerRequest request, JsonTextWriter jsonWriter) in Z:\Technitium\Projects\DnsServer\DnsServerCore\WebService.cs:line 3002
liang-hiwin
commented
4 years ago I see this shows an error code "[2020-02-18 14:19:27 UTC] [113.12.163.202:58672] TechnitiumLibrary.Net.Dns.DnsClientException: Name server returned error. DNS RCODE: ServerFailure (ServerFailure) "
liang-hiwin
commented
4 years ago I can ping cloudflare-dns.com normally
ShreyasZare
commented
4 years ago Recursive resolution is failing on your Internet and thus the DNS Client is unable to recursively resolve the domain name in the DoH url.
You can paste this exact text in the DNS Client server field and it should work: "Cloudflare HTTPS (https://cloudflare-dns.com/dns-query (1.1.1.1))"
liang-hiwin
commented
4 years ago Cloudflare HTTPS (https://cloudflare-dns.com/dns-query (1.1.1.1))
ok, can use "Cloudflare HTTPS (https://cloudflare-dns.com/dns-query (1.1.1.1))" normally, so can this feature be added in the next version, Bootstrap DNS servers are used to resolve IP addresses of the DoH / DoT resolvers you specify as upstreams.
liang-hiwin
commented
4 years ago Because our country's firewall has blocked a lot of domain names, recursive resolution of some domain names will cause errors. If you can add, for example, Bootstrap DNS servers to let it resolve blocked domain names, I think it is a good idea
ShreyasZare
commented
4 years ago Cloudflare HTTPS (https://cloudflare-dns.com/dns-query (1.1.1.1))
ok, can use "Cloudflare HTTPS (https://cloudflare-dns.com/dns-query (1.1.1.1))" normally, so can this feature be added in the next version, Bootstrap DNS servers are used to resolve IP addresses of the DoH / DoT resolvers you specify as upstreams.
Sure, will add the default IP addresses to the DoH url settings in next release.
liang-hiwin
commented
4 years ago Cloudflare HTTPS (https://cloudflare-dns.com/dns-query (1.1.1.1))
ok, can use "Cloudflare HTTPS (https://cloudflare-dns.com/dns-query (1.1.1.1))" normally, so can this feature be added in the next version, Bootstrap DNS servers are used to resolve IP addresses of the DoH / DoT resolvers you specify as upstreams.
Sure, will add the default IP addresses to the DoH url settings in next release.
"This Server (this-server)" cannot resolve some domain names, but "recursive resolution" can resolve normally. What is the problem?
liang-hiwin
commented
4 years ago 
ShreyasZare
commented
4 years ago "This Server (this-server)" cannot resolve some domain names, but "recursive resolution" can resolve normally. What is the problem?
This server query will resolve from the forwarder that you may have configured. If no forwarder is configured then it will do recursive resolution. Check logs to see what error it shows.
liang-hiwin
commented
4 years ago "This Server (this-server)" cannot resolve some domain names, but "recursive resolution" can resolve normally. What is the problem?
This server query will resolve from the forwarder that you may have configured. If no forwarder is configured then it will do recursive resolution. Check logs to see what error it shows.
It seems the problem is also unable to resolve the domain name in the forwarder.The SSL connection could not be established. 2020-02-20.log
ShreyasZare
commented
4 years ago It seems the problem is also unable to resolve the domain name in the forwarder.The SSL connection could not be established. 2020-02-20.log
The forwarder is failing with SSL auth error and thus you are seeing ServerFailure response for This Server in the DNS Client. You need to change forwarder to something that works on your internet connection that is not blocked.
liang-hiwin
commented
4 years ago It seems the problem is also unable to resolve the domain name in the forwarder.The SSL connection could not be established. 2020-02-20.log
The forwarder is failing with SSL auth error and thus you are seeing ServerFailure response for This Server in the DNS Client. You need to change forwarder to something that works on your internet connection that is not blocked.
root@www:~# curl -s "https://dns.bentasker.co.uk/dns-query?name=google-analytics.com&type=A" | python -m json.tool { "AD": false, "Answer": [ { "Expires": "Thu, 20 Feb 2020 13:15:58 UTC", "TTL": 300, "data": "172.217.14.68", "name": "google-analytics.com.", "type": 1 } ], "CD": false, "Question": [ { "name": "google-analytics.com.", "type": 1 } ], "RA": true, "RD": true, "Status": 0, "TC": false } root@www:~#
liang-hiwin
commented
4 years ago 
liang-hiwin
commented
4 years ago 
liang-hiwin
commented
4 years ago 
ShreyasZare
commented
4 years ago From the error it seems that the DoH server is not responding fast enough causing timeout errors.
Error! Name server returned error. DNS RCODE: ServerFailure (ServerFailure)"DNS CLient" menu doh protocol cannot be resolved, dot protocol resolution is normal。
