Joined: 31 Jul 2021 Posts: 2146 Location: All over YOUR webs
Posted: Thu Sep 23, 2021 14:01 Post subject:
mrjcd wrote:
NOT sure why they ain't made it all https
Cause its Tuesday and ISPs dont give a hoot, except when it comes to getting their money from users.
Im still getting mixed results even FF. Definetly happens more often there, the only thing I had set is HTTPS only mode, which I have now disabled to see if that makes a difference.
Need to fire up my laptop to give it a whirl, its QubeOS so its tighter than a nuns whatsit and somewhat quirky to setup some dev stuff.
Cause its Tuesday and ISPs dont give a hoot, except when it comes to getting their money from users.
I cannot complain about my ISP at all and the freebie 20MB site stuff was years ago / in the 90s yrs ago.
AND
If you read there 'terms of service agreement' it plainly states NO servers are allowed to run behind theirs on any user account or it will be disabled/closed at your cost.
They have a great deal of tolerance for me.
mrjcd.com has been up since 2002 always run from servers in my house
Joined: 08 May 2018 Posts: 14217 Location: Texas, USA
Posted: Thu Sep 23, 2021 14:20 Post subject:
mrjcd wrote:
Ok I done ... getting way OT of this build thread
But this is the freedom that people want and one of the chief complaints that led to my demotion again (beside the fact that I'm abrasive as heck ). Get OT all you wish; it's necessary! _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Joined: 08 May 2018 Posts: 14217 Location: Texas, USA
Posted: Thu Sep 23, 2021 14:49 Post subject: Re: recommended browsers, troubleshooting, dd-wrt, etc.
blkt wrote:
kernel-panic69 wrote:
Pardon the tone, but the issue doesn't have a thing to do with the webUI, the issue is with Internet browsing.
Nobody was talking about webUI, only you, but mentioned troubleshooting, dd-wrt etc. reliable browsers for tests.
ESR browsers have DNS over HTTPS disabled by default so no worries about that either, a good relative constant.
I am not experiencing "Hmm. We’re having trouble finding that site" nonsense but I am also using these browsers.
Just so everyone is following the punches:
the-joker wrote:
kernel-panic69 wrote:
Was testing using secure dns functionality in the browser disabled or enabled? Most browsers are configured to use secure dns using current provider by default.
Disabled, because this bypasses host files in any OS. And I do more specific blocks for telemetry and other things on a per machine basis using hosts files and the like.
FWIW, the Ignore WAN DNS patch that @egc submitted is identical to the one I had already written, so there was no need in double-tapping the issue.
@the-joker: fish, indeed. Slightly dead, even. @blkt: you should be more granular in your posting recommended browsers; had you included the double-tap commentary in the post, my response would've been non-existent. _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Last edited by kernel-panic69 on Thu Sep 23, 2021 14:59; edited 2 times in total
Joined: 08 May 2018 Posts: 14217 Location: Texas, USA
Posted: Thu Sep 23, 2021 15:00 Post subject:
And chime in during edit. See the edited post.... be specific as to why you post a recommendation, don't leave it up to anyone to question. Of course, I probably should have included in my previous question regarding secure dns enabled/disabled, etc. that I don't use browsers with this functionality, either.
Quote:
@blkt: you should be more granular in your posting recommended browsers; had you included the double-tap commentary in the post, my response would've been non-existent.
Posted: Thu Sep 23, 2021 19:07 Post subject: Re: CTF/FA enabled - working for you?
jacdc wrote:
Hi - you mentioned that your router (R7000) is performing to spec. - is your ISP connection greater than 300-400 Mbit up/down? Reason I ask, is that my ISP is 1Gb up/down and I can only get these speeds with CTF/FA enabled on my R7000 (but doing so breaks non-standard Port Forwarding rules). I tried this latest release r47474 - and port forwarding still not working. I also opened an SVN Trac ticket - https://svn.dd-wrt.com/ticket/7472 so hopefully this can get looked at (router logs/info provided in the SVN ticket). I also opened a Forum thread to discuss possible workarounds (IPtables MARK method mostly) but this discussion/progress has stopped - no working solutions.
Curious if Port Forwarding works for you with CTF enabled nonetheless ( I attempted a simple port forward from an NVRAM reset - still did not work). Idea was floated earlier to disable Port Forwarding tab in DDWRT UI if user selects CTF as the Shortcut Forwarding Engine (for now).
J
My ISP service is 500 Mbps up/down, and I do not currently have a need for port forwarding. As a quick test, I set a simple port range forwarding, rebooted the R7000, and ran the Speedtest app. It still gives me the full up/down speeds with CTF and Flow Acceleration disabled as before. Perhaps 1Gb up/down has different requirements/limitations for full speed?
I hope this helps. _________________ Netgear R7000: v3.0-r54248 std (11/29/23)
EdgeRouter-X: EdgeOS v2.0.9-hotfix 7
Joined: 16 Nov 2015 Posts: 6436 Location: UK, London, just across the river..
Posted: Thu Sep 23, 2021 20:16 Post subject:
kernel-panic69 wrote:
Was testing using secure dns functionality in the browser disabled or enabled? Most browsers are configured to use secure dns using current provider by default.
as far as my browsers around ...
-FFx doesn't use DOH by default, but im using it...with a lot of useful tweaks...
-Chrome also has DOH, but its not turned on by default.
-Opera DEV has DOH too not turned by default too...
-Opera GX has a DOH too not on by default....
-Pale-Moon doesn't have it or i'm not aware where is it and not intent to use it neither.
-Edge that one i blocked it and haven't touch it since it came out...no idea if it has DOH..
I don't think any of those above, on first install turns on DOH by default(or im worng and they changed their practice)...and there is not much reason for it...as DOH, DOT are a proper firewall bypassers and go around host based blocking too..unless you do a bit of a magic
I also use a DOT stub resolver on router level so, don't need and DOH at all...in fact the last DNScrypt can find and mitigate FFx DOH and throws a line about it...there was also an interesting trick to mitigate FFx DOH via DNSmasq (if im not wrong)...but lost the guide somewhere (damn)...
Both DoH and DoT are ignoring the WAN DNS ...the essence of those...
Probably i'm very much off topic now
Cheers _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Opera implemented it by default at some point, but I can't find a specific reference, unfortunately. I only know because I never touched the setting and it mysteriously appeared one day
All chromium-based browsers generally follow the same defaults, with exceptions, AFAIK. I just do not see the setting in some of them (EPIC, for example). _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Joined: 31 Jul 2021 Posts: 2146 Location: All over YOUR webs
Posted: Fri Sep 24, 2021 9:15 Post subject:
Its worth saying regarding the loading pages issue, Im not in the US or use DNS over HTTPS in any browsers (it doesnt fix the loading pages issue anyway), it bypasses the hosts files and thats not desired since I must block a gazillion end IP's and its not feasible to do this in dd-wrt and even if it was, DNS over HTTPS bypasses all that.
Sorry for offtopic
EDIT
The ignore WAN DNS, I have it enabled on DD-WRT, should I disable this?
Joined: 08 May 2018 Posts: 14217 Location: Texas, USA
Posted: Fri Sep 24, 2021 10:25 Post subject:
There's a way to do it with secure DNS enabled on the client end. But yeah, let's not go too far off-topic, even though that's the freedom everyone wants
Anyway, as I stated here and/or elsewhere, I don't use browsers with that feature in general; so that is generally not the cause of any connectivity issues for me. _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net