Welcome Guest ( Log In | Register )

Bump Topic Add Reply RSS Feed

Outline · [ Standard ] · Linear+

Unifi Unifi cannot reach 192.203.230.10

views
     
TSAnime4000
post Jul 15 2021, 02:41 AM, updated 5y ago

Look at all my stars!!
*******
Senior Member
2,400 posts

Joined: Jul 2009
From: /dev/null
I trying to setup my friend home server, some IP Address under Unifi are unreachable.
Especially IP Address begin with 192.*.*.* unreachable.

Address that cannot reached by Unifi:
CODE

198.41.0.4
199.9.14.201
192.33.4.12
199.7.91.13
192.203.230.10
192.5.5.241
192.112.36.4
198.97.190.53
192.36.148.17
192.58.128.30
193.0.14.129
199.7.83.42
202.12.27.33


Also IPv6
CODE

2001:503:ba3e::2:30
2001:500:200::b
2001:500:2::c
2001:500:2d::d
2001:500:a8::e
2001:500:2f::f
2001:500:12::d0d
2001:500:1::53
2001:7fe::53
2001:503:c27::2:30
2001:7fd::1
2001:500:9f::42
2001:dc3::35


There is something wrong with Unifi? or TM disallow that IP Address for some reasons?
asellus
post Jul 15 2021, 08:07 AM

#gompusas
Group Icon
Elite
4,541 posts

Joined: Jan 2003
From: BSRPPG51 Access Concentrator
QUOTE(Anime4000 @ Jul 15 2021, 02:41 AM)
I trying to setup my friend home server, some IP Address under Unifi are unreachable.
Especially IP Address begin with 192.*.*.* unreachable.

Address that cannot reached by Unifi:
CODE

198.41.0.4
199.9.14.201
192.33.4.12
199.7.91.13
192.203.230.10
192.5.5.241
192.112.36.4
198.97.190.53
192.36.148.17
192.58.128.30
193.0.14.129
199.7.83.42
202.12.27.33



There is something wrong with Unifi? or TM disallow that IP Address for some reasons?
*
Those are root DNS IP addresses. You cannot use them directly.
michaelkkl
post Jul 15 2021, 01:57 PM

Casual
***
Junior Member
362 posts

Joined: Jan 2011
QUOTE(Anime4000 @ Jul 15 2021, 02:41 AM)
I trying to setup my friend home server, some IP Address under Unifi are unreachable.
Especially IP Address begin with 192.*.*.* unreachable.

Address that cannot reached by Unifi:
CODE

198.41.0.4
199.9.14.201
192.33.4.12
199.7.91.13
192.203.230.10
192.5.5.241
192.112.36.4
198.97.190.53
192.36.148.17
192.58.128.30
193.0.14.129
199.7.83.42
202.12.27.33


Also IPv6
CODE

2001:503:ba3e::2:30
2001:500:200::b
2001:500:2::c
2001:500:2d::d
2001:500:a8::e
2001:500:2f::f
2001:500:12::d0d
2001:500:1::53
2001:7fe::53
2001:503:c27::2:30
2001:7fd::1
2001:500:9f::42
2001:dc3::35


There is something wrong with Unifi? or TM disallow that IP Address for some reasons?
*
Not sure what's your mean by unreachable to those IP addresses.

I'm using Unifi 100Mbps and able to ping/traceroute to all those IPv4/IPv6 of the root servers (except for G root servers)
TSAnime4000
post Jul 15 2021, 02:11 PM

Look at all my stars!!
*******
Senior Member
2,400 posts

Joined: Jul 2009
From: /dev/null
QUOTE(asellus @ Jul 15 2021, 08:07 AM)
Those are root DNS IP addresses. You cannot use them directly.
*
I know that Root Servers, I using Unbound for that, using same unbound settings as mine, but got SERVFAIL results

CODE

dig login.yahoo.com @127.0.0.1 -p 5335

; <<>> DiG 9.16.1-Ubuntu <<>> login.yahoo.com @127.0.0.1 -p 5335
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 13020
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1472
;; QUESTION SECTION:
;login.yahoo.com.  IN      A

;; Query time: 1743 msec
;; SERVER: 127.0.0.1#5335(127.0.0.1)
;; WHEN: Thu Jul 15 06:05:59 UTC 2021
;; MSG SIZE  rcvd: 57


QUOTE(michaelkkl @ Jul 15 2021, 01:57 PM)
Not sure what's your mean by unreachable to those IP addresses.

I'm using Unifi 100Mbps and able to ping/traceroute to all those IPv4/IPv6 of the root servers (except for G root servers)
*
ICMP are not blocked sure you can trace it, try setup own DNS see if your Unifi can host own server.
TSAnime4000
post Jul 15 2021, 10:01 PM

Look at all my stars!!
*******
Senior Member
2,400 posts

Joined: Jul 2009
From: /dev/null
anyone? it is possible to call & ask TM to allow home user to host own DNS? (not using Unifi/Google/Cloudflare DNS)
SilentVampire
post Jul 15 2021, 10:02 PM

Networking Enthusiast
*******
Senior Member
5,714 posts

Joined: Mar 2007
QUOTE(Anime4000 @ Jul 15 2021, 10:01 PM)
anyone? it is possible to call & ask TM to allow home user to host own DNS? (not using Unifi/Google/Cloudflare DNS)
*
You can always try to call and ask. You have nothing to lose by asking.
TSAnime4000
post Jul 16 2021, 10:36 PM

Look at all my stars!!
*******
Senior Member
2,400 posts

Joined: Jul 2009
From: /dev/null
QUOTE(SilentVampire @ Jul 15 2021, 10:02 PM)
You can always try to call and ask. You have nothing to lose by asking.
*
been trying to ask TM, none of them understood, no way to escalated higher tier support, either they know and pretend don't know.

conclusion: TM disallow user host a private DNS, it appear TM is intercept insecure DNS Query, it's better start using DoH, anytime soon TM modify DNS Query.

solution: Using DoH / DNS over HTTPS to VPS
loonsave
post Jul 17 2021, 01:18 PM

Regular
******
Senior Member
1,635 posts

Joined: May 2005
I am using UniFi. I also using Adguard and PiHole with Unbound + root DNS. Both also return my query.

Adguard + Unbound + Root
QUOTE
$ dig login.yahoo.com @127.0.0.1 -p 5353

; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> login.yahoo.com @127.0.0.1 -p 5353
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25633
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1472
;; QUESTION SECTION:
;login.yahoo.com.  IN A

;; ANSWER SECTION:
login.yahoo.com. 3331 IN CNAME ds-ats.member.g02.yahoodns.net.
ds-ats.member.g02.yahoodns.net. 3332 IN A 106.10.248.157

;; Query time: 0 msec
;; SERVER: 127.0.0.1#5353(127.0.0.1)
;; WHEN: Sat Jul 17 13:13:58 +08 2021
;; MSG SIZE  rcvd: 104


PiHole + Unbound + Root

QUOTE
dig login.yahoo.com @127.0.0.1 -p 5353

; <<>> DiG 9.11.5-P4-5.1+deb10u5-Raspbian <<>> login.yahoo.com @127.0.0.1 -p 5353
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62714
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1472
;; QUESTION SECTION:
;login.yahoo.com.  IN A

;; ANSWER SECTION:
login.yahoo.com. 3167 IN CNAME ds-ats.member.g02.yahoodns.net.
ds-ats.member.g02.yahoodns.net. 3168 IN A 106.10.248.157

;; Query time: 1 msec
;; SERVER: 127.0.0.1#5353(127.0.0.1)
;; WHEN: Sat Jul 17 13:16:26 +08 2021
;; MSG SIZE  rcvd: 104
TSAnime4000
post Jul 17 2021, 10:33 PM

Look at all my stars!!
*******
Senior Member
2,400 posts

Joined: Jul 2009
From: /dev/null
QUOTE(loonsave @ Jul 17 2021, 01:18 PM)
I am using UniFi. I also using Adguard and PiHole with Unbound + root DNS. Both also return my query.

Adguard + Unbound + Root
PiHole + Unbound + Root
*
UniFi or Unifi?
loonsave
post Jul 18 2021, 06:42 PM

Regular
******
Senior Member
1,635 posts

Joined: May 2005
QUOTE(Anime4000 @ Jul 17 2021, 10:33 PM)
UniFi or Unifi?
*
TM Unifi. So used to type UniFi as I was using their AP last time. tongue.gif
TSAnime4000
post Jul 18 2021, 07:27 PM

Look at all my stars!!
*******
Senior Member
2,400 posts

Joined: Jul 2009
From: /dev/null
QUOTE(loonsave @ Jul 18 2021, 06:42 PM)
TM Unifi. So used to type UniFi as I was using their AP last time.  tongue.gif
*
Oh, that's odd, I export my Proxmox LXC and import to friend,
The LXC do have internet can ping and can speedtest
« Next Oldest · Networks and Broadband · Next Newest »
 

Add ReplyOptions
 

Change to:
| Lo-Fi Version
 0.0196sec    0.41    5 queries    GZIP Disabled
Time is now: 15th December 2025 - 08:00 PM
All Rights Reserved © 2002- 2025 Vijandren Ramadass (~unite against racism~)
Removal Request
Powered by Invision Power Board © 2025  IPS, Inc.