Open nimasaj opened 4 weeks ago
Greetings and welcome to our community! As this is the first issue you opened here, we wanted to share some useful infos with you:
Hey @nimasaj, thank you for raising this issue with us.
After a first review we noticed that this does not seem to be a technical issue, but rather a configuration issue or general question about how Portmaster works.
Thus, we invite the community to help with configuration and/or answering this questions.
If you are in a hurry or haven't received an answer, a good place to ask is in our Discord community.
If your problem or question has been resolved or answered, please come back and give an update here for other users encountering the same and then close this issue.
If you are a paying subscriber and want this issue to be checked out by Safing, please send us a message on Discord or via Email with your username and the link to this issue, so we can prioritize accordingly.
Hey @nimasaj you need to add the dns server that is resolving these domains correctly into Portmaster.
you can do that by adding the server with two flags, as described here: https://wiki.safing.io/en/Portmaster/App/DNSConfiguration
search
and search-only
Hey @nimasaj you need to add the dns server that is resolving these domains correctly into Portmaster.
you can do that by adding the server with two flags, as described here: https://wiki.safing.io/en/Portmaster/App/DNSConfiguration
search
andsearch-only
@Raphty Thanks for your reply. Is the following line the correct format to add?
dot://print.maine.edu?search=130.111.30.145:53
If no, would you please provide with an example? Or preferably the correct format to add?
an example would be:
dot://9.9.9.9:853?verify=dns.quad9.net&name=Quad9&blockedif=empty&search=safing.io,youtube.com&search-only
your setup does not work, but you can just usedns://130.111.30.145:53?verify=print.maine.edu&search=safing.io,youtube.com&search-only
if I assume correctly that this dns is not dot and uses this ip, you can also skip the verify if that creates issues... you are only using it for the domains specified anyway
@Raphty Thanks for your replies. I tested today and the following result was achieved.
The first command was not working as shown in this picture, https://imgur.com/meQNMTk
Then as you suggested I removed verify section, and it worked, https://imgur.com/Lwepqkc
However, still the address is not loading. Following are some images from the log window. I tried in both Google Chrome 128.0.6613.84 (Official Build) (64-bit) and Mozilla Firefox 129.0.1 (32-bit),
https://imgur.com/H12yUL4
https://imgur.com/iFNSxDx
https://imgur.com/qvVNL2e
https://imgur.com/j7vjzWq
The log window doesn't even show the address anymore. There is no other blocked event that could be related to this issue in the logs. Is there any suggestion?
By the way, Qualtricks, shown in the logs, is a service from the University for the surveys.
Edit, I restarted my browsers and It seems the following ones are related to this issue,
https://imgur.com/wjNY9fA
https://imgur.com/fiH4oB8
The following is the list of them.
1.93.168.192.in-addr.arpa
2.93.168.192.in-addr.arpa
254.93.168.192.in-addr.arpa
255.93.168.192.in-addr.arpa
1.159.168.192.in-addr.arpa
255.159.168.192.in-addr-arpa
How can I whitelist them in a range?
did you read the error message from start to end?
Currently, the issue is not about the error message. That was just reporting back for that command. I'm reporting the whole issue here, in order to help development of this app to make it more user-friendly and compatible with real-life situations.
but it is not a bug, it is a configuration issue on your part, and you did apparently not read the error message which told you what you would need to do to fix your wrong config
granted, it was me who put the wrong thing in my example... but then I thought you would take the example and configure it to fit your need....
What happened: Blocking access to
https://print.maine.edu/
. This URL is only available through EDUROAM network. This network is designed for students on campus. With Portmaster running, access to this URL is blocked. Could you please add the settings for it so that it gets loaded with default settings? And make Portmaster compatible with this network and University services?Images:
How did you reproduce it?: trying in Chrome and Firefox.
Debug Information:
Version 1.6.10
``` Portmaster 1.6.10 built with go1.22.3 (gc -cgo) for windows/amd64 at 2024-05-15T12:03:21Z commit 867d0bca2d71d7247039cf8e6b129580c28be7d6 (clean) at 2024-05-15T09:08:08Z from git@github.com:Safing/portmaster.git Licensed under the GPLv3 license. ```Platform: Microsoft Windows 11 Home 10.0.22631 Build 22631
``` System: Microsoft Windows 11 Home windows (Standalone Workstation) 10.0.22631 Build 22631 Kernel: 10.0.22631 Build 22631 x86_64 ```No Module Error
Unexpected Logs
``` 240815 12:37:50.270 v/location:303 > WARN 002 netenv: failed to get IPv4 device location from traceroute: did not receive any actionable ICMP reply 240815 12:37:52.725 olver-mdns:114 > WARN 004 intel(mdns): failed to create udp6 listen multicast socket: listen udp6 [ff02::fb]:5353: setsockopt: not supported by windows 240815 12:43:38.782 CURRENT TIME ```Status: Online
``` OnlineStatus: Online CaptivePortal: ```SPN: disabled (module disabled)
``` HomeHubID: HomeHubName: HomeHubIP: Transport: --- Client: true PublicHub: false HubHasIPv4: false HubHasIPv6: false ```Resolvers: 4/4
``` Cloudflare (dot://cloudflare-dns.com:853#config) dot://cloudflare-dns.com:853#config Failing: false Cloudflare (dot://cloudflare-dns.com:853#config) dot://cloudflare-dns.com:853#config Failing: false 130.111.30.145 (dns://130.111.30.145:53#system) dns://130.111.30.145:53#system Failing: false 130.111.30.198 (dns://130.111.30.198:53#system) dns://130.111.30.198:53#system Failing: false ```Config: 7
``` core/expertiseLevel: expert dns/dontResolveSpecialDomains: true filter/blockInbound: true filter/endpoints: [redacted] filter/lists: [MAL DECEP BAD CB-MW WSP DCT UNBREAK] filter/serviceEndpoints: [redacted] spn/enable: false ```Updates: stable (13/33)
``` Active: all/intel/geoip/geoipv4.mmdb.gz: 20231201.0.1 all/intel/geoip/geoipv6.mmdb.gz: 20231201.0.1 all/intel/lists/base.dsdl: 20240801.0.0 all/intel/lists/index.dsd: 2023.6.13 all/intel/lists/intermediate.dsdl: 20240728.0.0 all/intel/lists/urgent.dsdl: 20240731.22.2 all/intel/portmaster/news.yaml: 20240808.12.10 all/intel/portmaster/notifications.yaml: 20231218.17.37 all/ui/modules/assets.zip: 0.3.1 all/ui/modules/portmaster.zip: 0.8.6 windows_amd64/core/portmaster-core.exe: 1.6.10 windows_amd64/kext/portmaster-kext.sys: 1.1.2 windows_amd64/start/portmaster-start.exe: 1.6.0 Selected: all/dashboards/hubs.json: 0.0.2 all/intel/geoip/geoipv4-mini.mmdb.gz: 20231201.0.1 all/intel/geoip/geoipv4.mmdb.gz: 20231201.0.1 all/intel/geoip/geoipv4.mmdb: 20231201.0.1 all/intel/geoip/geoipv6-mini.mmdb.gz: 20231201.0.1 all/intel/geoip/geoipv6.mmdb.gz: 20231201.0.1 all/intel/geoip/geoipv6.mmdb: 20231201.0.1 all/intel/lists/base.dsdl: 20240801.0.0 all/intel/lists/index.dsd: 2023.6.13 all/intel/lists/intermediate.dsdl: 20240728.0.0 all/intel/lists/urgent.dsdl: 20240731.22.2 all/intel/portmaster/news.yaml: 20240808.12.10 all/intel/portmaster/notifications.yaml: 20231218.17.37 all/intel/spn/main-intel.yaml: 20240213.17.8 all/ui/modules/assets.zip: 0.3.1 all/ui/modules/base.zip: 0.2.11 all/ui/modules/console.zip: 0.1.11 all/ui/modules/monitor.zip: 0.2.4 all/ui/modules/portmaster.zip: 0.8.6 all/ui/modules/profilemgr.zip: 0.1.7 all/ui/modules/settings.zip: 0.1.8 windows_amd64/app/portmaster-app.zip: 0.2.8 windows_amd64/core/portmaster-core.exe: 1.6.10 windows_amd64/hub/spn-hub.exe: 0.7.7 windows_amd64/jess/jess.exe: 0.3.3 windows_amd64/kext/portmaster-kext.dll: 1.0.14 windows_amd64/kext/portmaster-kext.pdb: 1.1.2 windows_amd64/kext/portmaster-kext.sys: 1.1.2 windows_amd64/notifier/portmaster-notifier.exe: 0.3.6 windows_amd64/notifier/portmaster-snoretoast.exe: 0.6.0 windows_amd64/notifier/portmaster-wintoast.dll: 0.1.4 windows_amd64/packages/portmaster-installer.exe: 1.0.13 windows_amd64/start/portmaster-start.exe: 1.6.0 ```