I am doing a POC of Cloudflare for teams. I added my network (default) and applied content and security policies to it. However, I am still able to perform a successful DIG to adult websites and malware sites. DIG shoes NOERROR. I gave a 48 hours and still no change. Flushed DNS also.

Sure, but does it return an actual IP address?

Screen Shot 2021-08-12 at 6.43.00 AM1260×612 37.5 KB

Hello and thank you in advance for answering. Yes, it does also return an IP address.

CF_dig962×542 28.8 KB

It’s working for me. Are you sure you have your Location set properly?

Screen Shot 2021-08-12 at 6.55.16 AM1272×778 48.2 KB

I can redo my location again and see what happens.

So I went through the setup multiple times and it still does not block the categories I selected. I can view all the traffic it allowed but it does not block anything. When I do a DIG on my machine it always resolves against 172.64.36.1 but does not if I do a DIG using 1.1.1.3.

Have you tested from a different machine? Are you sure the NIC doesn’t have a different DNS setup than the default (assuming the rest of the network is DHCP)?

Hello Freitasm, I was able to use another machine and got the same results. I tested both wired and wireless as well. Not sure what the issue is but I am continuing to troubleshoot. What is weird is when I perform a dnsleaktest it shows cloud flare DNS IPs.

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.