Firefox DoH does not resolve some domains from Ashburn Cloudflare resolvers - connection timed out

www.impetus.com is not resolving with Firefox Cloudflare DoH
162.158.76.61 Ashburn resolver seems to be the culprit.

$ nslookup www.impetus.com 162.158.76.61

;; connection timed out; no servers could be reached

ISP resolves it fine.

Not sure that’s the ashburn resolver IP but it might be a geo-based outage as you suggest. It does resolve in Atlanta, Georgia.

Although this is a messy dnsviz, the domain’s own nameservers aren’t responding apparently https://dnsviz.net/d/www.impetus.com/dnssec/

1 Like

same issue with urlquery.net from Ashburn resolver 162.158.76.90

(the site does resolve even though http times out)

Same issue with Newark resolver :

$ nslookup p.feedblitz.com 108.162.218.21

;; connection timed out; no servers could be reached

can you fix this ?

Thanks,

Another geo based outage - 162.158.76.229 is not resolving en.wikipedia.org currently

I’m unable to reach Wikipedia currently in Firefox DoH

This has been happening frequently enough on different major sites to be noticeable and inconvenient. Please make sure your resolvers are working.

Hi,

I can take a look but I haven’t seen any problems resolving en.wikipedia.org recently.

The 108.162.218.21 nor 162.158.76.229 are addresses for resolver lookups. You can use any of the addresses here https://developers.cloudflare.com/1.1.1.1/setting-up-1.1.1.1/

Are you trying to test the Mozilla DoH endpoint? You can try something like

curl -H 'accept:application/dns-json' https://cloudflare-dns.com/dns-
query?name=en.wikipedia.org
1 Like

It is working now, it wasn’t working this morning EST.

Hmm, I got 162.158.76.229 IP from dnsleaktest.com in Firefox using DoH. (trr mode 3 no fallback)
but it does appear that IP doesn’t resolve anything.

Anyways, thanks

I’m having continued failures resolving major domains over Firefox Cloudflare DoH

Now https://new.siemens.com
I know these are temporary failures , but the DNS just isn’t very reliable - I don’t get these problems using ISP DNS or other public providers.

I don’t think I can recommend Cloudflare DoH at this point because of the unreliability

(dnsleaktest shows 162.158.76.229 )

See new.siemens.com | DNSViz - It looks like that might have an edns issue.

siemens.com to new.siemens.com: The server(s) for the parent zone (siemens.com) responded with a referral instead of answering authoritatively for the DS RR type. (... UDP_-_EDNS0_4096_D_K)