No Internet Access, SimpleDNS crash, service not starting.

[bitkbs]

I'm frequently losing network access with error: No Internet Access - your device is connected and can access other devices on your local network, but you may not be able to reach the internet.

When I open SimpleDNS I find the resolvers page empty and after a few seconds SimpleDNS becomes unresponsive and crashes. Other times I have found the DNSCrypt service fails to start when Windows starts. I use Malwarebytes Firewall Control and don't know if the issues I'm experiencing are linked.

Can anybody help with this?

[slyphnier]

did u tried disable malwarebytes firewall and see if solve ur issue?

i use malwarebytes but i dont use their firewall and no problem with resolver

try take a look :\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy public-resolver.md and public-resolver.md.minisig is updated quite often there is possibility malwarebytes blocking access

[bitkbs]

did u tried disable malwarebytes firewall and see if solve ur issue?

i use malwarebytes but i dont use their firewall and no problem with resolver

try take a look :\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy public-resolver.md and public-resolver.md.minisig is updated quite often there is possibility malwarebytes blocking access

Malwarebytes firewall has a feature called secure boot which basically enforces inbound and outbound connections being blocked until the profile is changed to a less restrictive profile. I suspected this may be the issue but I have sometimes randomly lost internet access even when inbound connections are allowed. I'm unsure what to look for in the public-resolver.md... Are there any logs I can look for? I don't know if you can disable MB firewall but I will try disabling the start automatically at user logon option.

[slyphnier]

in malwarebytes dashboard, you should see Real-Time Protection so just disable web-protection (firewall) and leave other (malware, ransomware, exploit) enable

you can open public-resolver.md with notepad and you can see the content but you cant freely edit it, as it will verify the file with .minisig

public-resolver.md content basically same to this : https://download.dnscrypt.info/dnscrypt-resolvers/v3/public-resolvers.md

the things i am not sure is to where simplednscrypt updating that, as there are few url available to fetch those in my mind, probably we can whitelist those url in malwarebytes so it can fetch/update

[bitkbs]

Malwarebytes WFC is a separate program to Malwarebytes. There is no real time protection. It is like an alternative GUI and way to control the Windows firewall. More info here: https://www.binisoft.org/wfc.php

site is currently down

[slyphnier]

i thought you using "malwarebytes" based what i see on the sites, even it using malwarebytes names, it completely separate from malwarebytes

with those firewall control, then u need extra work with its filtering to work fine with various programs. for me, its just cause troublesome and not really worth putting time setting those, thus i disable web-protection in malwarebytes

few things to note is:

1. dnscrypt -> need to be allowed to send and receive connection freely
2. dns-requests from various server listed in public-resolvers (or those u select/using)-> probably also need to be allowed

edit: probably people in here can help u more with malwarebytes-WFC : https://www.wilderssecurity.com/threads/windows-firewall-control-wfc-by-binisoft-org.347370/page-253

[bitkbs]

I've recently installed Windows 11 and are trying the included DNS over HTTPS built in Win 11 instead of SimpleDNSCrypt. I'm occasionally still getting unidentified network so I think this has to be an adapter issue or something.

[Uj947nXmRqV2nRaWshKtHzTvckUUpD]

I used simpleDnsCrypt for more than a year and managed to setup a working configuration with DoH server.

However, starting from today i cannot start dnscrypt service when ethernet adapter is enabled. If i try to manuall start it from services.msc, i get error "1067: The process terminated unexpectedly". If I disable the ethernet adapter, the service starts but of course I cannot bound it to that interface.

My wild guess is that a recent windows update broke something...

Today Windows update downloaded but for some reason failed to install: Update for Windows 10 Version 21H1 for x64-based Systems (KB4023057)

After reboot, dnscrypt stopped working

[Uj947nXmRqV2nRaWshKtHzTvckUUpD]

Update: I moved to Acrylic DNS Proxy This project looks dead.

[sutex]

fusionneur Looking at Acrylic DNS Proxy as well. Ideally would like to config it with, DNSSEC DNSCrypt? DOH?. To be as secure as Simple DNS encrypt.

[Uj947nXmRqV2nRaWshKtHzTvckUUpD]

I use cloudflare's doh. Acrylic's documentation is done quite well and if read carefully, you can set it up in less than a couple of hours. Basically you will want to edit the ini file which guides you through the setup.

[slyphnier]

I used simpleDnsCrypt for more than a year and managed to setup a working configuration with DoH server.

However, starting from today i cannot start dnscrypt service when ethernet adapter is enabled. If i try to manuall start it from services.msc, i get error "1067: The process terminated unexpectedly". If I disable the ethernet adapter, the service starts but of course I cannot bound it to that interface.

My wild guess is that a recent windows update broke something...

Today Windows update downloaded but for some reason failed to install: Update for Windows 10 Version 21H1 for x64-based Systems (KB4023057)

After reboot, dnscrypt stopped working

i got KB4023057 update back on 5th august and got no issue with dnscrypt at this point (https://imgur.com/vDMk9Tq) probably try update ethernet driver

EDIT: got updated KB4023057 few days ago aswell KB5005565 just now (https://imgur.com/m13PaY0), no issue with simplednscrypt

[jusdfo]

The problem can be solved by using dnscrypt-proxy+proxifier. The application can break down because once the application start, the dnscrypt-proxy will download server list files through system default dns first. If your dns recordings have been polluted,such as you are in the china, dns will return a fake ip, leading to dnscrypt-proxy breaking down. You should open proxy client first, then use proxifier to proxy the network flow of dnscrypt-proxy, then shut down proxifier, the dnscrypt-proxy will work correctly.

[Uj947nXmRqV2nRaWshKtHzTvckUUpD]

I doubt that is the case.. I never had the internet connection censored, but it still caused me those issues. Using acrylic for almost a year now with no issues.