1.1.1.1

[peanut183]

Hi,

 

I'm unable to reach Cloudflare's DNS  primary 1.1.1.1 through my XR500, but I am able to reach their secondary 1.0.0.1.

 

I have a DMZ setup, my network is as follows:

 

192.168.1.0/24 Wifi/LAN on XR500

192.168.0.0/24 DMZ with .1 as the router

ISP

 

I setup the DNS in the XR500 to use the two Cloudflare servers, but the first one times out after 2 seconds and I cannot reach it via traceroute.

 

Trying to get to 1.1.1.1...

λ tracert 1.1.1.1
 
Tracing route to 1dot1dot1dot1.cloudflare-dns.com [1.1.1.1]
over a maximum of 30 hops:
 
  1     2 ms     2 ms     3 ms  192.168.1.1
  2     *        *        *     Request timed out.
  3     *        *        *     Request timed out.
  4     *        *        *     Request timed out.
  5     *        *        *     Request timed out.
  6     *        *        *     Request timed out.
  7     *        *        *     Request timed out.

 

Trying to get to 1.0.0.1... 

λ tracert 1.0.0.1
 
Tracing route to 1dot1dot1dot1.cloudflare-dns.com [1.0.0.1]
over a maximum of 30 hops:
 
  1     2 ms     2 ms     3 ms  192.168.1.1
  2     3 ms     3 ms     2 ms  192.168.0.1
  3     * redacted *
  4     * redacted *
  5     * redacted *
  6     * redacted *
  7     * redacted *
  8     * redacted *
  9    10 ms     9 ms     9 ms  1dot1dot1dot1.cloudflare-dns.com [1.0.0.1]

 

Does the XR500 use 1.1.1.1 internally?

[Netduma Fraser]

The second usually is a backup if the first is unable to be reached so it looks like it's down and the backup has kicked in, nothing to worry about. It is quite new and I imagine a lot of people are starting to use it

[peanut183]

The second usually is a backup if the first is unable to be reached so it looks like it's down and the backup has kicked in, nothing to worry about. It is quite new and I imagine a lot of people are starting to use it

 

I don't think that is the issue. If you look at my traceroute to 1.0.0.1 you will see that it hits my DMZ router at 192.168.0.1 while the 1.1.1.1 never makes the next hop. I'm able to access 1.1.1.1 through my VPN connection while trying to trace the route to 1.1.1.1.

 

I'm looking to see if anyone else has had success hitting 1.1.1.1 through the XR500.

 

For example, if I try to trace to 1.1.1.2

 

 
Tracing route to 1.1.1.2 over a maximum of 30 hops
 
  1     3 ms     3 ms     2 ms  192.168.1.1
  2     3 ms     2 ms     3 ms  192.168.0.1
  3     *        *        *     Request timed out.
  4     *        *        *     Request timed out.

 

The 1.1.1.1 traceroute never hits my DMZ router.

 

This is what I would expect to see if it was a problem with their service.

[peanut183]

I'm looking to see if anyone else has had success hitting 1.1.1.1 through the XR500.

 

Just so I'm clear, I've been reading there are some Cisco products out there that aren't passing 1.1.1.1 along so for sure it could be my ISP, I just wanted to be sure it wasn't the XR500 since it looked to be dropping at the XR500.

[Netduma Fraser]

I don't know why that would occur but as DNS is covered by Netgear's Settings I'd recommend starting a ticket with them or give them a call as there should be no problem using the DNS.

[N3CR0]

1.1.1.1 is working just fine for me

[Zennon]

If you read on cloudflare's support site where I went before trying the DNS, it seem's some ISP's block 1.1.1.1

[crawlgsx]

Using 1.1.1.1 here as well with XR500 without issue. 

[peanut183]

Thanks for the verification all.

[nytemare01]

What’s so good about this particular DNS server ?

[michaeljfig]

What’s so good about this particular DNS server ?

The 1.1.1.1 and 1.0.0.1 are supposed to be faster dns's by caching popular websites and anonymity. It said somewhere that your isp tracks sites you goto and using the dns servers above they only keep for 24 hours then they are deleted. Hopefully that makes sense. Info: https://www.google.com/amp/s/blog.cloudflare.com/announcing-1111/amp/