App functionality get blocked when set to DNS+Firewall even when manually allowing the domains and IP's. #858
Comments
|
That's a strange one, as the app is set to bypass both DNS and Firewall. Do you see any domains / IPs being blocked against "World of Tanks Blitz" in Network Log? You can use the search box to search for the app + the "Blocked" filter to find blocked connections. |
|
Well they obviously ARE blocked by the firewall because it works when I use DNS only mode 😉 PS: I unblock/trust the domains+IP's manually by going through the logs you get when you inspect a particular app... So somehow the firewall isn't respecting the trust list and just blocks everything I guess. |
|
Can you please look at the network log to see if the connections are indeed blocked?
The DNS-only mode is vastly different than DNS + Firewall mode. So, these assumptions don't hold as you may think. |
|
Also, for Bypass DNS + Firewall to work, the upstream DNS must be set to one of the RDNS+ resolvers. |
|
@ignoramous
PS: As said before it works properly when using DNS only... |
|
Ah, thanks. This very much seems to be an application-specific issue. Because if nothing is blocked then things should work, but clearly isn't. I'll take a look at this once #52 is out the door. |
|
... seems not to be application specific. Same issue with Ecosia Browser. Once having set fw rules always Rethink DNS blocks loading websites when fw is active. Only Deactivation of fw helped me. |
|
Thanks. What do you see against Ecosia in the Network Logs UI? Any blocked connections (blocked entries appear with a red left-hand side border, tapping on which should show you the reason why the connection was blocked)? |
|
Forgot to tell you which blocking reasons were arising. They were mostly "DNS blocked", only two times "Unused app". |
|
To the original question. When I updated to v54a, all my "isolated" apps become blocked. So I have put them to something else and then back to "Isolate". |
Yikes! Looks like a database migration bug. Did the UI reflect that change, or did it continue to show Isolate despite the previously isolated app being blocked completely? |
True. Folks who understand this should contribute to the docs: https://github.com/celzero/docs (:
Not sure, but seems like an Android bug. Are you on a different ROM? What version of Android? |
[Diclaimer after updating from v54a to v54c the issue seems fixed] |
|
I am not sure what specifically changed, but I've had a much better experience with v54c, where v54a got stuck blocking all traffic. |
|
@michaelblyons looks like the same thing that I had too |
|
Kindly inform us if you continue to encounter this problem. The v055 release (currently available on the website, with the versions for the Play Store and F-Droid pending) includes several additional enhancements aimed at resolving this issue. |
|
@hussainmohd-a i personally have moved away from this topic so far due to other stuff im doing that i don't remember nor use the setup in the topic anymore... But if i encounter similar problems ill remember to get back 😉 |
|
Thank you, @TriMoon. Closing this issue for now. Please feel free to reopen it if you encounter this problem again. |
When you set "DNS+Firewall" and try to watch adverts, you don't get the rewards.
I manually checked the accessed domains and IP's after this happens, and manually make them "Trusted".
I repeated this over and over.
I currently have 71 domains and 314 IP rules for this app, but it still doesn't work.
The functionality works when using only DNS block mode though...
Oh PS: The app is set to "Bypass DNS+Firewall"...
The text was updated successfully, but these errors were encountered: