Kindle reader App for Android can't connect to Amazon
-
My Kindle Reader App cannot connect when connected to my internal WiFi behind my pfSense. It works fine when I connect to external WiFi. I looked through the logs and cannot figure out what is blocking it. I disabled the pfBlockerNG package and enabled my default allow LAN rule. Still it will not connect. Any ideas?
-
I think by default, all devices can make any outbound connection so you probably have something blocking it. There isn't enough information to give a definite answer but here are some questions to start with:
Can your Kindle access any other websites beside Amazon?
Is your Kindle getting a DHCP address from pfSense correctly, and with the correct gateway?
Does your pfSense have a valid WAN IP and can any other devices behind pfSense access Amazon?
Do you use Snort for filtering?
Do you use any of the advanced outbound NAT features?
Did you enable "Log packets that are handled by this rule" on all of the LAN firewall rules to see if that helps you see the problem in System Logs > Firewall?
Maybe try disabling all LAN filters except the default Allow All to see if one of those rules is blocking it. -
I do not have a Kindle rather the Kindle app for Android.
The problem is only happening on my Lollipop tablet. I was able to successfully use the Kindle Reader on my Marshmallow phone connected to the same WiFi.
Still troubleshooting!
-
Disregard that last statement.
My wife and I both have the same tablet and phone.
Models:
Tablet: Samsung Galaxy Tab A - Android Lollipop
Phone: Samsung J3 - Android MarshmallowDownloaded a fresh install of Kindle on both her devices and both show the error:
"Unable to connect to Amazon. Please verify the WiFi status and device date and time."My tablet still has the same error.
I removed/reinstalled Kindle on my phone and disabled mobile data. Then I reset the states on pfSense. The strange thing is that it still syncs with Amazon.
I'm stumped!
Further to the questions…
Can your Kindle access any other websites beside Amazon?
Yes
Is your Kindle getting a DHCP address from pfSense correctly, and with the correct gateway?
YesDoes your pfSense have a valid WAN IP and can any other devices behind pfSense access Amazon?
I have valid WAN IP. See blurb above.Do you use Snort for filtering?
NoDo you use any of the advanced outbound NAT features?
NoDid you enable "Log packets that are handled by this rule" on all of the LAN firewall rules to see if that helps you see the problem in System Logs > Firewall?
No all, but I disabled all rules.Maybe try disabling all LAN filters except the default Allow All to see if one of those rules is blocking it.
I disabled all rules except the default allow and moved it to the top. Still problems -
I raised the issue with Amazon support. This was their answer…
"I checked with my technical team regarding this.
For now, if the Firewall does not have a manual way of allowing the app through it. The only option would be turning off the Firewall. " -
I'm using both kindle and kindle app without any issue.
How is configured your DNS?
-
DNS Resolver w/DNSSEC enabled. Not using forwarding mode
-
I ran a packet capture on my tablet from when I start the app to when I get the 'cannot connect' message. I don't see any Amazon IP's. The capture was ran against the IP assigned to my tablet and the majority of the communications are with 172.217.1.110 (Google).
-
Think I had the wrong settings on the capture. Ran it again and found http traffic with yto50.r.cloudfront.net (Amazon) Now to find a good Wireshark tutorial ;) :-\
-
The problem appears to be related to one of my DNSBL feeds in pfBlockerNG. Although I disabled the package during troubleshooting, I decided to completely remove it and all of a sudden I was able to sync with Amazon from my tablet.
I reinstalled pfBNG and noticed a block alert on fls-na.amazon.com. I added it to a whitelist and all appears to be good.
-
I use the Kindle with the kindle app too but have not faced any issues. May be it is with your device causing issues.
-
This post is deleted!