Having issues with enabling 1.1.1.1 to all my device

Hi,
I have configured my router’s DNS to be 1.1.1.1 and 1.0.0.1 but while accessing 1.1.1.1/help to check it is working or not, through my other devices i.e. mobile or PC, it seems the Cloudflare DNS is not working for either of my devices.
I have tried flushing DNS, rebooting router but the problem doesn’t go away. Hope you guys can walk me through troubleshooting this problem.
Regards,

So, I ran the tests. Here are those :

C:\Users\Rony>nslookup example.com 1.1.1.1
Server: one.one.one.one
Address: 1.1.1.1

Non-authoritative answer:
Name: example.com
Addresses: 2606:2800:220:1:248:1893:25c8:1946
93.184.216.34

C:\Users\Rony>nslookup example.com 1.0.0.1
Server: one.one.one.one
Address: 1.0.0.1

Non-authoritative answer:
Name: example.com
Addresses: 2606:2800:220:1:248:1893:25c8:1946
93.184.216.34

C:\Users\Rony> nslookup example.com 8.8.8.8
Server: dns.google
Address: 8.8.8.8

Non-authoritative answer:
Name: example.com
Addresses: 2606:2800:220:1:248:1893:25c8:1946
93.184.216.34

C:\Users\Rony>nslookup -class=chaos -type=txt id.server 1.1.1.1
Server: one.one.one.one
Address: 1.1.1.1

*** one.one.one.one can’t find id.server: Not implemented

C:\Users\Rony>nslookup -class=chaos -type=txt id.server 1.0.0.1
Server: one.one.one.one
Address: 1.0.0.1

*** one.one.one.one can’t find id.server: Not implemented

C:\Users\Rony>nslookup -type=txt whoami.Cloudflare.com ns3.Cloudflare.com
Server: ns3.cloudflare.com
Address: 162.159.0.33

Non-authoritative answer:
whoami.cloudflare.com text =

    "172.217.34.67"

(root) nameserver = i.root-servers.net
(root) nameserver = j.root-servers.net
(root) nameserver = k.root-servers.net
(root) nameserver = l.root-servers.net
(root) nameserver = m.root-servers.net
(root) nameserver = a.root-servers.net
(root) nameserver = b.root-servers.net
(root) nameserver = c.root-servers.net
(root) nameserver = d.root-servers.net
(root) nameserver = e.root-servers.net
(root) nameserver = f.root-servers.net
(root) nameserver = g.root-servers.net
(root) nameserver = h.root-servers.net
a.root-servers.net internet address = 198.41.0.4

and also this :

https://1.1.1.1/help#eyJpc0NmIjoiTm8iLCJpc0RvdCI6Ik5vIiwiaXNEb2giOiJObyIsInJlc29sdmVySXAtMS4xLjEuMSI6IlllcyIsInJlc29sdmVySXAtMS4wLjAuMSI6IlllcyIsInJlc29sdmVySXAtMjYwNjo0NzAwOjQ3MDA6OjExMTEiOiJObyIsInJlc29sdmVySXAtMjYwNjo0NzAwOjQ3MDA6OjEwMDEiOiJObyIsImRhdGFjZW50ZXJMb2NhdGlvbiI6IkJPTSIsImlzV2FycCI6Ik5vIiwiaXNwTmFtZSI6IkxldmVsIDMgQ29tbXVuaWNhdGlvbnMiLCJpc3BBc24iOiIzMzU2In0=

Hi there, I posted the result for you to help me diagnose this issue. Can someone follow up?

Hi,
I have configured my router’s DNS to be 1.1.1.1 and 1.0.0.1 but while accessing 1.1.1.1/help to check it is working or not, through my other devices i.e. mobile or PC, it seems the Cloudflare DNS is not working for either of my devices.
I have tried flushing DNS, rebooting router but the problem doesn’t go away. Hope you guys can walk me through troubleshooting this problem.

here are the diagnostic results :

C:\Users\Rony>nslookup example.com 1.1.1.1
Server: one.one.one.one
Address: 1.1.1.1

Non-authoritative answer:
Name: example.com
Addresses: 2606:2800:220:1:248:1893:25c8:1946
93.184.216.34

C:\Users\Rony>nslookup example.com 1.0.0.1
Server: one.one.one.one
Address: 1.0.0.1

Non-authoritative answer:
Name: example.com
Addresses: 2606:2800:220:1:248:1893:25c8:1946
93.184.216.34

C:\Users\Rony> nslookup example.com 8.8.8.8
Server: dns.google
Address: 8.8.8.8

Non-authoritative answer:
Name: example.com
Addresses: 2606:2800:220:1:248:1893:25c8:1946
93.184.216.34

C:\Users\Rony>nslookup -class=chaos -type=txt id.server 1.1.1.1
Server: one.one.one.one
Address: 1.1.1.1

*** one.one.one.one can’t find id.server: Not implemented

C:\Users\Rony>nslookup -class=chaos -type=txt id.server 1.0.0.1
Server: one.one.one.one
Address: 1.0.0.1

*** one.one.one.one can’t find id.server: Not implemented

C:\Users\Rony>nslookup -type=txt whoami.Cloudflare.com ns3.Cloudflare.com
Server: ns3.cloudflare.com
Address: 162.159.0.33

Non-authoritative answer:
whoami.cloudflare.com text =

    "172.217.34.67"

(root) nameserver = i.root-servers.net
(root) nameserver = j.root-servers.net
(root) nameserver = k.root-servers.net
(root) nameserver = l.root-servers.net
(root) nameserver = m.root-servers.net
(root) nameserver = a.root-servers.net
(root) nameserver = b.root-servers.net 1
(root) nameserver = c.root-servers.net
(root) nameserver = d.root-servers.net
(root) nameserver = e.root-servers.net
(root) nameserver = f.root-servers.net
(root) nameserver = g.root-servers.net
(root) nameserver = h.root-servers.net
a.root-servers.net internet address = 198.41.0.4
    C:\Users\Rony>tracert 1.1.1.1

    Tracing route to one.one.one.one [1.1.1.1]
    over a maximum of 30 hops:

      1     1 ms     4 ms     1 ms  192.168.1.1
      2     2 ms     1 ms     1 ms  login.speednet.com [10.161.55.1]
      3     *        *        *     Request timed out.
      4     3 ms     4 ms     4 ms  180.87.216.1
      5     *        *        *     Request timed out.
      6    34 ms     *        *     180.87.232.1
      7    46 ms    35 ms    35 ms  103.27.170.48
      8    33 ms    34 ms    33 ms  one.one.one.one [1.1.1.1]

    Trace complete.

    C:\Users\Rony>tracert 1.0.0.1

    Tracing route to one.one.one.one [1.0.0.1]
    over a maximum of 30 hops:

      1     2 ms     5 ms     4 ms  192.168.1.1
      2     2 ms     3 ms     2 ms  login.speednet.com [10.161.55.1]
      3     *        *        *     Request timed out.
      4     4 ms     5 ms     5 ms  180.87.216.1
      5     *        *        *     Request timed out.
      6     *       36 ms     *     180.87.232.1
      7    40 ms    38 ms    38 ms  103.27.170.48
      8    40 ms    38 ms    37 ms  one.one.one.one [1.0.0.1]

Trace complete.

https://1.1.1.1/help#eyJpc0NmIjoiTm8iLCJpc0RvdCI6Ik5vIiwiaXNEb2giOiJObyIsInJlc29sdmVySXAtMS4xLjEuMSI6IlllcyIsInJlc29sdmVySXAtMS4wLjAuMSI6IlllcyIsInJlc29sdmVySXAtMjYwNjo0NzAwOjQ3MDA6OjExMTEiOiJObyIsInJlc29sdmVySXAtMjYwNjo0NzAwOjQ3MDA6OjEwMDEiOiJObyIsImRhdGFjZW50ZXJMb2NhdGlvbiI6IkJPTSIsImlzV2FycCI6Ik5vIiwiaXNwTmFtZSI6Ikdvb2dsZSIsImlzcEFzbiI6IjE1MTY5In0=

Anyone would help me out? I shared the results you guys asked. Should I move on or what?

You seem to be able to reach Cloudflare but at the same time you seem to not really reach it.

Lets first start with a simple traceroute :slight_smile:

tracert www.cloudflare.com

Thanks for getting back!

here is the output :

C:\Users\Rony>tracert www.cloudflare.com

Tracing route to www.cloudflare.com [104.17.209.9]
over a maximum of 30 hops:

1 2 ms 2 ms 5 ms 192.168.1.1
2 2 ms 1 ms 2 ms login.speednet.com [10.161.55.1]
3 * * * Request timed out.
4 1557 ms 5 ms 8 ms 180.87.216.1
5 * * * Request timed out.
6 * 35 ms 34 ms 180.87.232.1
7 66 ms 121 ms 69 ms 103.27.170.48
8 38 ms 37 ms 38 ms 104.17.209.9

Trace complete.

Alright, based on that I’d say you actually reach Cloudflare and your ISP doesnt hijack anything.

The question now would be why is this not working

nslookup -class=chaos -type=txt id.server 1.1.1.1

Also, where are you located? It seems to suggest India, but then the IP address you posted is a Google IP address. Are you connecting via a VPN?

I’m from India and not connected to a vpn.
I changed the dns server on my router to cloudflare dns server but it seemed to be not working.

Here is the following output:

C:\Users\Rony>nslookup -class=chaos -type=txt id.server 1.1.1.1
Server: one.one.one.one
Address: 1.1.1.1

*** one.one.one.one can't find id.server: Not implemented

My public ip is 103.144.173.242 if it helps

Exactly, that should be working on Cloudflare but it isnt. Either there is an issue in the Indian datacentre or you are not reaching Cloudflare.

As for your location, when you ran nslookup -type=txt whoami.Cloudflare.com ns3.Cloudflare.com it returned a Google IP address, hence my question.

So, what would I do now?
Could it be possible that my ISP force all traffic to be passed through there DNS server?
My also tried from mobile as well but the result was always same.

What does this return?

powershell "(Invoke-WebRequest -UseBasicParsing -Uri 'https://1.1.1.1/dns-query?name=cloudflare.com' -Headers @{'Accept' = 'application/dns-json'}).RawContent"

That is a possibility, hence I asked for the traceroute earlier, but it would seem it still reaches Cloudflare. Though, then the command should work.

here

Windows Terminal

C:\Users\Rony>powershell "(Invoke-WebRequest -UseBasicParsing -Uri 'https://1.1.1.1/dns-query?name=cloudflare.com' -H
eaders @{'Accept' = 'application/dns-json'}).RawContent"
HTTP/1.1 200 OK
Connection: keep-alive
Access-Control-Allow-Origin: *
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
CF-RAY: 587148b57dbc697d-BOM
cf-request-id: 023aabc56a0000697de9968200000001
Content-Length: 259
Content-Type: application/dns-json
Date: Mon, 20 Apr 2020 19:31:10 GMT
Server: cloudflare

{"Status":0,"TC":false,"RD":true,"RA":true,"AD":true,"CD":false,"Question":[{"name":"cloudflare.com","type":1}],"Answer"
:[{"name":"cloudflare.com","type":1,"TTL":185,"data":"104.17.176.85"},{"name":"cloudflare.com","type":1,"TTL":185,"data"
:"104.17.175.85"}]}

Alright, DoH requests do work. Now, it could be a possibility that your ISP hijacks all regular DNS requests and routes them via its own servers, that would explain why the identication does not work, however that is just speculation at this point.

What you just said maybe I will lean towards it because I have no issues resolving to clouflare dns on my previous ISP Alliance. Unfortunately I had to shift location, thus the ISP change.
I have checked on their network, It works fine.

I am afraid at this point there is not much more I can suggest. If your ISP hijacks DNS requests, that would be something that would be hard to track down.

A trace route does appear to reach Cloudflare, DoH works as well, so you should be able to reach Cloudflare’s DNS service. That error either suggests an issue with the datacentre in Mumbai or that your ISP intercepts DNS requests.

Yeah, It sucks. ISPs here are totally s***. Half of them doesn’t even know how things work.
In that case what you have just said, there’s nothing I can do.
I may want to check other friend’s network if they have the same ISP and check if that work for em or not.

You could try to switch your network to DoH, that should work at least.