search

celzero / rethink-app

DNS over HTTPS / DNS over Tor / DNSCrypt client, WireGuard proxifier, firewall, and connection tracker for Android.
https://rethinkfirewall.com/
Apache License 2.0
2.6k stars 130 forks source link

Requests to 10.111.222.3 are blocked by "Error" #1554

Open ignoramous opened 1 week ago

ignoramous commented 1 week ago

I noticed something strange:

I found this blocked entry img0: ![grafik](https://github.com/celzero/rethink-app/assets/1378907/c265454f-d5ce-437e-b11d-0290bdc1653e)
But this app is bypassed img1: ![grafik](https://github.com/celzero/rethink-app/assets/1378907/85337d45-a462-40af-ad17-db24c56f8f76)
This is a web site I tried to open img2: ![grafik](https://github.com/celzero/rethink-app/assets/1378907/f450ac23-50d9-421f-98a8-e91a1da0ac3a)

Originally posted by @GambaJo in https://github.com/celzero/rethink-app/issues/1503#issuecomment-2173824612

ignoramous commented 1 week ago

This is nothing unexpected. Android tries to connect to 10.111.222.3 on port 853 assuming it is a DNS-over-TLS server (which it isn't), and Rethink blocks the request (why? #1265). Today, Rethink shows "Error" but ideally, it should show some other relevant label instead.