DNS with iOS
-
I am a little stumped and looking for some ideas. I was seeing some really slow DNS times on my iOS devices, iphones and ipads in my network. In the order of hundreds of milliseconds. I was troubleshooting this by using the he.net app on the devices. Then i noticed that in the search bar where you specify which dns you want to query mine was showing a weird entry. I checked the same weird entry, spaces, not all servers listed was occurring across all of my devices, which led me to check the settings on my router.
Everything looked normal on my router. When I changed my iOS device network dns settings from automatic to manual, everything was great. The servers showed normal in the list in the he.net app and the dns speed was back to normal (20-40msec).
I think i have narrowed it down to either something hinky with pfsense (unlikely) or an issue with iOS doing something dumb (likely).
Anyone tracking what i have going on? Seen something similar?
I have uploaded my screenshots of my configs here.
https://imgur.com/a/5JBaxhH
-
And what are those IPs?
Why are you handing out 2.. out of the box pfsense will just hand out its IP for dns.. On that interface dhcpd is running on.
-
@johnpoz I use pi-hole for dns ad filtering, I have two for redundancy sake, each ns has a v4 and a v6 address. A client should be receiving 4 ns. 2 v4 address via DHCP, and 2 v6 via the router advertisement.
-
Ok.. So if your clients are pointing to pihole for dns, where does pihole point to?
and
which dns you want to query mine was showing a weird entry.
What was your client pointing too?
-
@johnpoz the upstream for the piholes are the pfsense router.
-
Ok... I have a sim setup.. where pfsense then resolves.
So now that your clients are pointing to your pihole your working fine???
which dns you want to query mine was showing a weird entry.
What was this weird entry??
-
look in the 3rd image i posted of the he.net app. You can see for nameserver entry it lists
(defaults: , ,10.0.0.9)
correct it looks like (default: 10.0.0.9, 10.0.0.10,) -
Are other dhcp clients getting it correctly? Sniff the dhcp offer, does it list them both correctly..
I run ios on my phone, my wifes phone and tablet... Never seen any issues.. I do the same thing hand dhcp clients my pihole IP..
-
yes the dhcp offer and the router advertisement show the correct dns servers.
-
well than - look to your clients...
-
yeah i am, i was just hoping someone had seen this before. The people in this forum are a lot smarter than most.
-
Nope never seen such a thing... Been using iphone and ipad with pfsense for like ever..
-
Mmm, that does seem odd. Do the affected clients always show that? It could just be a display issue with the app.
I've not seen anything like that either.
Steve
-
@stephenw10 I also thought it could just be a display issue. But performance was bad when i set dns to automatic, and when i set it to manual, the performance was good and the display was correct.
Its seems like ios is getting/parsing and blank entry for dns, that eventually times out and it moves on to the next server in the list which is successful.
-
What version of ios are you running?
What happens if you set your dhcp server to just 1 IP?
-
12.2
-
And you have multiple devices doing this?
What does it look like under automatic? Do you have blank lines... Not the HE display, the normal wifi little i button when your connected.
-
Thats the 4th screen shot i posted, under automatic it look completely normal
-
What if you just turn off IPv6... You sure HE not just able to show the really long IPv6 addresses..
-
sure i can try.
But that wouldnt explain why it takes me less than a second eyeballing to to get a dns entry when it is set to manual in ios. and i just counted 8 seconds when it was set to automatic. Same domain each time that would be cached by the upstream.
Either way this is clearly not a pfsense issue but an iOS.
