1.1.1.2 blocks an app on ios

allebone · February 12, 2021, 2:51am

I was testing 1.1.1.2 (malware blocking) and my kids found that a game on the ios apple store called zombs royale no longer works if using this for dns. Changing back to 1.1.1.1 lets the app open again.

This behaviour does not occur when accessing the web version of the game. It is exclusive to the ios app on the iphone.

Why does 1.1.1.2 get triggered by this ios app? Is it trying to contact a location that contains malware or is this an error?

Kind regards
Pete

DotMrCode · February 12, 2021, 2:15pm

Hello,

There may be ads in the game, which will cause warnings.
https://www.joesandbox.com/analysis/242004/0/html

allebone · February 12, 2021, 2:29pm

Ok sure. But 1.1.1.2 says it blocks just malware only? Either way it prevents an app from opening on an iphone, so does this app have malware? Yes - good keep blocked. No? Then dns is breaking functionality in error?

DotMrCode · February 12, 2021, 3:09pm

Set to 1.1.1.3 / 1.0.0.3 and see if there is a problem again?

allebone · February 12, 2021, 3:23pm

I was using 1.1.1.2 and 1.0.0.2, however I just tested both .2 and .3 and it is still broken on ios iphone app.

Changing to 1.1.1.1 immediately fixes the problem and the app opens.

Pete

cs-cf · February 12, 2021, 3:26pm

Without knowing the URL being blocked it’s not possible to say. You should report it to the app creator and they can submit the DNS record for review.

allebone · February 12, 2021, 3:56pm

Ok as there is no process from your side to fix an app broken by 1.1.1.2 dns and no process for a user of the app to work out or test why its blocked or monitor or submit anything, then the solution is not production ready and I will use something else. Thanks for your feedback. Good luck, I consider the situation closed

cs-cf · February 12, 2021, 4:45pm

We don’t build or manage the app or know what DNS hostname is being called or blocked. The application vendor does, hence my suggestion you contact them.

You can report the domain for review if you know it. https://report.teams.cloudflare.com/

1.1.1.1 and 1.1.1.[2/3] are privacy focused resolvers. We record as little customer identifiable information as possible in line with our privacy policy and keep it for as short of a period of time as possible. If you were using the Cloudflare 1.1.1.1 app you could file a bug report which might contain data to determine the host being called.

You could also sign up for a Gateway account and configure your own policies where you can manage your own security settings and access logs for your devices.

But without knowing the hostname being called it’s not possible to review.

system · February 13, 2021, 4:46pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.