DNS upstream for a specific domain in Client config not working #1437

New issue

Closed

opened 2026-03-04 01:18:01 -05:00 by deekerman · 11 comments

deekerman commented 2026-03-04 01:18:01 -05:00

Owner

Copy link

Originally created by @emtek-at on GitHub (Apr 2, 2020).

Originally assigned to: @ameshkov on GitHub.

Issue Details

in the Feature #821 is a bug. If I set the Upstream DNS for a specific Client to e.g. this value:
9.9.9.9
[/home.local/]172.22.20.1
[/example.at/]172.16.12.203

it's ignoring the 2 entries for home.local and example.at.

If I set the global Upstream DNS to the above value, it is working as expected.

• Version of AdGuard Home server:
  • v0.101.0
• Operating system and version:
  • Debian Buster

Verbose Log of query zeus.emtek.local with global Upstream DNS:

`2020/04/02 22:06:52 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).handleUDPPacket(): Start handling new UDP packet from 172.22.20.104:56014
2020/04/02 22:06:52 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): IN: ;; opcode: QUERY, status: NOERROR, id: 21
;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;zeus.emtek.local. IN A

2020/04/02 22:06:52 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream 172.22.20.1:53 successfully finished exchange of ;zeus.emtek.local. IN A. Elapsed 1 ms.
2020/04/02 22:06:52 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).Resolve(): RTT: 1 ms
2020/04/02 22:06:52 864#63 [debug] DNSFwd: Checking CNAME zeus.emtek.at. for zeus.emtek.local.
2020/04/02 22:06:52 864#63 [debug] DNSFwd: Checking record A (172.22.20.1) for zeus.emtek.at.
2020/04/02 22:06:52 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): OUT: ;; opcode: QUERY, status: NOERROR, id: 21
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 1

;; QUESTION SECTION:
;zeus.emtek.local. IN A

;; ANSWER SECTION:
zeus.emtek.local. 86400 IN CNAME zeus.emtek.at.
zeus.emtek.at. 86400 IN A 172.22.20.1

;; AUTHORITY SECTION:
emtek.at. 86400 IN NS ns.emtek.at.

;; ADDITIONAL SECTION:
ns.emtek.at. 86400 IN A 172.22.20.1

2020/04/02 22:06:52 864#68 [debug] 1 elements serialized via json in 111.977µs: 0 kB, 326/entry, 111.977µs/entry
2020/04/02 22:06:52 864#68 [debug] ok "/opt/AdGuardHome/data/querylog.json": 326 bytes written
2020/04/02 22:06:52 864#64 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).handleUDPPacket(): Start handling new UDP packet from 172.22.20.104:56015
2020/04/02 22:06:52 864#64 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): IN: ;; opcode: QUERY, status: NOERROR, id: 22
;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0`

Verbose Log of query zeus.emtek.local with client Upstream DNS:

`2020/04/02 22:08:59 864#86 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).handleUDPPacket(): Start handling new UDP packet from 172.22.20.104:55821
2020/04/02 22:08:59 864#86 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): IN: ;; opcode: QUERY, status: NOERROR, id: 23
;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;zeus.emtek.local. IN A

2020/04/02 22:08:59 864#86 [debug] Using settings for client with IP 172.22.20.104
2020/04/02 22:08:59 864#86 [debug] Using custom upstreams for 172.22.20.104
2020/04/02 22:08:59 864#86 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream 9.9.9.9:53 successfully finished exchange of ;zeus.emtek.local. IN A. Elapsed 10 ms.
2020/04/02 22:08:59 864#86 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).Resolve(): RTT: 10 ms
2020/04/02 22:08:59 864#86 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): OUT: ;; opcode: QUERY, status: NXDOMAIN, id: 23
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;zeus.emtek.local. IN A

;; AUTHORITY SECTION:
. 2796 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020040201 1800 900 604800 86400

2020/04/02 22:08:59 864#88 [debug] 1 elements serialized via json in 1.502186ms: 0 kB, 323/entry, 1.502186ms/entry
2020/04/02 22:08:59 864#88 [debug] ok "/opt/AdGuardHome/data/querylog.json": 323 bytes written
2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).handleUDPPacket(): Start handling new UDP packet from 172.22.20.104:55822
2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): IN: ;; opcode: QUERY, status: NOERROR, id: 24
;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;zeus.emtek.local. IN AAAA

2020/04/02 22:08:59 864#75 [debug] Using settings for client with IP 172.22.20.104
2020/04/02 22:08:59 864#75 [debug] Using custom upstreams for 172.22.20.104
2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream [/emtek.local/]172.22.20.1:53 failed to exchange ;zeus.emtek.local. IN AAAA in 0 milliseconds. Cause: dial udp: address [/emtek.local/]172.22.20.1:53: missing port in address
2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream [/justnet.at/]172.16.12.203:53 failed to exchange ;zeus.emtek.local. IN AAAA in 0 milliseconds. Cause: dial udp: address [/justnet.at/]172.16.12.203:53: missing port in address
2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream 9.9.9.9:53 successfully finished exchange of ;zeus.emtek.local. IN AAAA. Elapsed 10 ms.
2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).Resolve(): RTT: 11 ms
2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): OUT: ;; opcode: QUERY, status: NXDOMAIN, id: 24
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;zeus.emtek.local. IN AAAA

;; AUTHORITY SECTION:
. 3479 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020040201 1800 900 604800 86400

2020/04/02 22:08:59 864#89 [debug] 1 elements serialized via json in 108.933µs: 0 kB, 326/entry, 108.933µs/entry
2020/04/02 22:08:59 864#89 [debug] ok "/opt/AdGuardHome/data/querylog.json": 326 bytes written
`

Originally created by @emtek-at on GitHub (Apr 2, 2020). Originally assigned to: @ameshkov on GitHub. ### Issue Details in the Feature #821 is a bug. If I set the Upstream DNS for a specific Client to e.g. this value: 9.9.9.9 [/home.local/]172.22.20.1 [/example.at/]172.16.12.203 it's ignoring the 2 entries for home.local and example.at. If I set the global Upstream DNS to the above value, it is working as expected. * **Version of AdGuard Home server:** * v0.101.0 * **Operating system and version:** * Debian Buster ### Verbose Log of query zeus.emtek.local with global Upstream DNS: `2020/04/02 22:06:52 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).handleUDPPacket(): Start handling new UDP packet from 172.22.20.104:56014 2020/04/02 22:06:52 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): IN: ;; opcode: QUERY, status: NOERROR, id: 21 ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;zeus.emtek.local. IN A 2020/04/02 22:06:52 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream 172.22.20.1:53 successfully finished exchange of ;zeus.emtek.local. IN A. Elapsed 1 ms. 2020/04/02 22:06:52 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).Resolve(): RTT: 1 ms 2020/04/02 22:06:52 864#63 [debug] DNSFwd: Checking CNAME zeus.emtek.at. for zeus.emtek.local. 2020/04/02 22:06:52 864#63 [debug] DNSFwd: Checking record A (172.22.20.1) for zeus.emtek.at. 2020/04/02 22:06:52 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): OUT: ;; opcode: QUERY, status: NOERROR, id: 21 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 1 ;; QUESTION SECTION: ;zeus.emtek.local. IN A ;; ANSWER SECTION: zeus.emtek.local. 86400 IN CNAME zeus.emtek.at. zeus.emtek.at. 86400 IN A 172.22.20.1 ;; AUTHORITY SECTION: emtek.at. 86400 IN NS ns.emtek.at. ;; ADDITIONAL SECTION: ns.emtek.at. 86400 IN A 172.22.20.1 2020/04/02 22:06:52 864#68 [debug] 1 elements serialized via json in 111.977µs: 0 kB, 326/entry, 111.977µs/entry 2020/04/02 22:06:52 864#68 [debug] ok "/opt/AdGuardHome/data/querylog.json": 326 bytes written 2020/04/02 22:06:52 864#64 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).handleUDPPacket(): Start handling new UDP packet from 172.22.20.104:56015 2020/04/02 22:06:52 864#64 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): IN: ;; opcode: QUERY, status: NOERROR, id: 22 ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0` ### Verbose Log of query zeus.emtek.local with client Upstream DNS: `2020/04/02 22:08:59 864#86 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).handleUDPPacket(): Start handling new UDP packet from 172.22.20.104:55821 2020/04/02 22:08:59 864#86 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): IN: ;; opcode: QUERY, status: NOERROR, id: 23 ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;zeus.emtek.local. IN A 2020/04/02 22:08:59 864#86 [debug] Using settings for client with IP 172.22.20.104 2020/04/02 22:08:59 864#86 [debug] Using custom upstreams for 172.22.20.104 2020/04/02 22:08:59 864#86 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream 9.9.9.9:53 successfully finished exchange of ;zeus.emtek.local. IN A. Elapsed 10 ms. 2020/04/02 22:08:59 864#86 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).Resolve(): RTT: 10 ms 2020/04/02 22:08:59 864#86 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): OUT: ;; opcode: QUERY, status: NXDOMAIN, id: 23 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;zeus.emtek.local. IN A ;; AUTHORITY SECTION: . 2796 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020040201 1800 900 604800 86400 2020/04/02 22:08:59 864#88 [debug] 1 elements serialized via json in 1.502186ms: 0 kB, 323/entry, 1.502186ms/entry 2020/04/02 22:08:59 864#88 [debug] ok "/opt/AdGuardHome/data/querylog.json": 323 bytes written 2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).handleUDPPacket(): Start handling new UDP packet from 172.22.20.104:55822 2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): IN: ;; opcode: QUERY, status: NOERROR, id: 24 ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;zeus.emtek.local. IN AAAA 2020/04/02 22:08:59 864#75 [debug] Using settings for client with IP 172.22.20.104 2020/04/02 22:08:59 864#75 [debug] Using custom upstreams for 172.22.20.104 2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream [/emtek.local/]172.22.20.1:53 failed to exchange ;zeus.emtek.local. IN AAAA in 0 milliseconds. Cause: dial udp: address [/emtek.local/]172.22.20.1:53: missing port in address 2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream [/justnet.at/]172.16.12.203:53 failed to exchange ;zeus.emtek.local. IN AAAA in 0 milliseconds. Cause: dial udp: address [/justnet.at/]172.16.12.203:53: missing port in address 2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream 9.9.9.9:53 successfully finished exchange of ;zeus.emtek.local. IN AAAA. Elapsed 10 ms. 2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).Resolve(): RTT: 11 ms 2020/04/02 22:08:59 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.(*Proxy).logDNSMessage(): OUT: ;; opcode: QUERY, status: NXDOMAIN, id: 24 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;zeus.emtek.local. IN AAAA ;; AUTHORITY SECTION: . 3479 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020040201 1800 900 604800 86400 2020/04/02 22:08:59 864#89 [debug] 1 elements serialized via json in 108.933µs: 0 kB, 326/entry, 108.933µs/entry 2020/04/02 22:08:59 864#89 [debug] ok "/opt/AdGuardHome/data/querylog.json": 326 bytes written `

deekerman 2026-03-04 01:18:01 -05:00

• closed this issue
• added the
  bug
  P3: Medium
  labels

deekerman commented 2026-03-04 01:18:09 -05:00

Author

Owner

Copy link

@ameshkov commented on GitHub (Apr 2, 2020):

I cannot confirm this bug.

Verbose Log of query zeus.emtek.local with global Upstream DNS:

As I understand, you should add this to the list of upstream:
[/emtek.local/]172.22.20.1

@ameshkov commented on GitHub (Apr 2, 2020): I cannot confirm this bug. > Verbose Log of query zeus.emtek.local with global Upstream DNS: As I understand, you should add this to the list of upstream: `[/emtek.local/]172.22.20.1`

deekerman commented 2026-03-04 01:18:09 -05:00

Author

Owner

Copy link

@emtek-at commented on GitHub (Apr 2, 2020):

I have set the servers as you said (i did not want to post it on github)

Futher explanation:
Look at Verbose Log of query zeus.emtek.local with client Upstream DNS
;; QUESTION SECTION:
;zeus.emtek.local. IN A
Here only 9.9.9.9 is used as upstream server.

And in
;; QUESTION SECTION:
;zeus.emtek.local. IN AAAA
All 3 upstream servers are used, but with error: 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream [/emtek.local/]172.22.20.1:53 failed to exchange ;zeus.emtek.local. IN AAAA in 0 milliseconds. Cause: dial udp: address [/emtek.local/]172.22.20.1:53: missing port in address

But this worked with the global config: 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream 172.22.20.1:53 successfully finished exchange of ;zeus.emtek.local. IN A. Elapsed 1 ms.

Am I missig any detail?

@emtek-at commented on GitHub (Apr 2, 2020): I have set the servers as you said (i did not want to post it on github) Futher explanation: Look at Verbose Log of query zeus.emtek.local with client Upstream DNS ;; QUESTION SECTION: ;zeus.emtek.local. IN A Here only 9.9.9.9 is used as upstream server. And in ;; QUESTION SECTION: ;zeus.emtek.local. IN AAAA All 3 upstream servers are used, but with error: 864#75 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream [/emtek.local/]172.22.20.1:53 failed to exchange ;zeus.emtek.local. IN AAAA in 0 milliseconds. Cause: dial udp: address [/emtek.local/]172.22.20.1:53: missing port in address But this worked with the global config: 864#63 [debug] github.com/AdguardTeam/dnsproxy/proxy.exchangeWithUpstream(): upstream 172.22.20.1:53 successfully finished exchange of ;zeus.emtek.local. IN A. Elapsed 1 ms. Am I missig any detail?

deekerman commented 2026-03-04 01:18:09 -05:00

Author

Owner

Copy link

@ameshkov commented on GitHub (Apr 2, 2020):

It looks as if AGH failed to parse the string and tried to use the whole [/emtek.local/]172.22.20.1 as an address.

Just in case, what other DNS settings do you have? Could it be that you have "parallel upstream" enabled?

@ameshkov commented on GitHub (Apr 2, 2020): It looks as if AGH failed to parse the string and tried to use the whole `[/emtek.local/]172.22.20.1` as an address. Just in case, what other DNS settings do you have? Could it be that you have "parallel upstream" enabled?

deekerman commented 2026-03-04 01:18:09 -05:00

Author

Owner

Copy link

@emtek-at commented on GitHub (Apr 3, 2020):

I don't have the "parallel upstream" enabled.
Upstream Server is set to 172.22.20.254. I also tried 1.1.1.1 and 9.9.9.9, it's everytime the same issue.

All other options are the default settings.

@emtek-at commented on GitHub (Apr 3, 2020): I don't have the "parallel upstream" enabled. Upstream Server is set to 172.22.20.254. I also tried 1.1.1.1 and 9.9.9.9, it's everytime the same issue. All other options are the default settings.

deekerman commented 2026-03-04 01:18:09 -05:00

Author

Owner

Copy link

@ameshkov commented on GitHub (Apr 3, 2020):

@emtek-at I guess we need to add more logging, I don't understand what's happening yet.

Would you mind trying a beta version once it's available?

@ameshkov commented on GitHub (Apr 3, 2020): @emtek-at I guess we need to add more logging, I don't understand what's happening yet. Would you mind trying a beta version once it's available?

deekerman commented 2026-03-04 01:18:09 -05:00

Author

Owner

Copy link

@emtek-at commented on GitHub (Apr 3, 2020):

Yes I would try a beta.

@emtek-at commented on GitHub (Apr 3, 2020): Yes I would try a beta.

deekerman commented 2026-03-04 01:18:09 -05:00

Author

Owner

Copy link

@dcplaya commented on GitHub (Apr 29, 2020):

I am seeing something similar on v0.101.0-144-g08b0

The error on the web page is

The custom Upstream DNS I want to give is

@dcplaya commented on GitHub (Apr 29, 2020): I am seeing something similar on v0.101.0-144-g08b0 The error on the web page is  The custom Upstream DNS I want to give is 

deekerman commented 2026-03-04 01:18:10 -05:00

Author

Owner

Copy link

@emtek-at commented on GitHub (Apr 29, 2020):

This is no error. You have to add an default upstream. Just write in a new line the DNS Server you want to use for all other calls.

@emtek-at commented on GitHub (Apr 29, 2020): This is no error. You have to add an default upstream. Just write in a new line the DNS Server you want to use for all other calls.

deekerman commented 2026-03-04 01:18:10 -05:00

Author

Owner

Copy link

@dcplaya commented on GitHub (Apr 29, 2020):

I swear I tried that but I tried it on the non-beta v0.101.0!

I assume if I want the rest to go through AdGuard (ie, I only wanted to change security.TLD on 1 device), I just put 127.0.0.1 as the main DNS?

Also, I specified a specific domain to use Google's DNS, but it does not seem to work. Still blocks the domain. And I ran NSLookup on the PC who has the IP 10.10.1.108

PS C:\Users\user> nslookup ads.google.com
Server:  UnKnown
Address:  10.1.1.12

Non-authoritative answer:
Name:    ads.google.com
Address:  127.0.0.1

@dcplaya commented on GitHub (Apr 29, 2020): I swear I tried that but I tried it on the non-beta v0.101.0! I assume if I want the rest to go through AdGuard (ie, I only wanted to change security.TLD on 1 device), I just put `127.0.0.1` as the main DNS? Also, I specified a specific domain to use Google's DNS, but it does not seem to work. Still blocks the domain. And I ran NSLookup on the PC who has the IP 10.10.1.108  ``` PS C:\Users\user> nslookup ads.google.com Server: UnKnown Address: 10.1.1.12 Non-authoritative answer: Name: ads.google.com Address: 127.0.0.1 ```

deekerman commented 2026-03-04 01:18:10 -05:00

Author

Owner

Copy link

@xzwr commented on GitHub (May 5, 2020):

I can confirm the issue on v0.101.0.
When you set a domain-specific entry in the client dns upstream settings it will be ignored.
Non-domain-specific settings are honored.

My configuration:

• Parallel upstream disabled at global level
• Client upstream DNS settings:

[/mylocal.domain/]192.168.0.2
9.9.9.9

With this configuration i would expect AGH to use the DNS server at 192.168.0.2 to resolve *.mylocal.domain. However it does not. It still uses 9.9.9.9.

@xzwr commented on GitHub (May 5, 2020): I can confirm the issue on v0.101.0. When you set a domain-specific entry in the client dns upstream settings it will be ignored. Non-domain-specific settings are honored. My configuration: - Parallel upstream disabled at global level - Client upstream DNS settings: ``` [/mylocal.domain/]192.168.0.2 9.9.9.9 ``` With this configuration i would expect AGH to use the DNS server at 192.168.0.2 to resolve *.mylocal.domain. However it does not. It still uses 9.9.9.9.

deekerman commented 2026-03-04 01:18:10 -05:00

Author

Owner

Copy link

@qnimbus commented on GitHub (May 14, 2020):

I can also confirm this issue. I'm also using the most recent (v0.101.0) version of AdGuard.

To ellaborate - I'm using custom upstream DNS servers in my global configuration and that's working fine.

https://dns10.quad9.net/dns-query
[/apps.mylocal.domain/]10.102.0.1
[/lan.mylocal.domain/]10.102.0.1
[/iot.mylocal.domain/]10.102.0.1
[/mylocal.domain/]10.102.0.1
[/102.10.in-addr.arpa/]10.102.0.1
[/120.10.in-addr.arpa/]10.102.0.1
[/130.10.in-addr.arpa/]10.102.0.1

As soon as I use a custom upstream DNS server config for any of my clients it stops working. Specifically the domain specific upstreams stop working - the Quad9 server will still be queried.

@qnimbus commented on GitHub (May 14, 2020): I can also confirm this issue. I'm also using the most recent (v0.101.0) version of AdGuard. To ellaborate - I'm using custom upstream DNS servers in my global configuration and that's working fine. ``` https://dns10.quad9.net/dns-query [/apps.mylocal.domain/]10.102.0.1 [/lan.mylocal.domain/]10.102.0.1 [/iot.mylocal.domain/]10.102.0.1 [/mylocal.domain/]10.102.0.1 [/102.10.in-addr.arpa/]10.102.0.1 [/120.10.in-addr.arpa/]10.102.0.1 [/130.10.in-addr.arpa/]10.102.0.1 ``` As soon as I use a custom upstream DNS server config for any of my clients it stops working. Specifically the domain specific upstreams stop working - the Quad9 server will still be queried.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

AGDNS-3523-upd-dnsproxy-middlewares

ADG-11407-add-docker-release

AGDNS-3535-upd-urlfilter

AGDNS-3684-fix-tls-status

beta-v0.107

release-v0.107.72

ADG-10306

beta-v0.108

ADG-10291

upd-url-filter

release-v0.107.71

release-v0.107.70

ADG-10301

ADG-8560-react-update

ADG-8560-graph-fix

release-v0.107.69

release-v0.107.68

release-v0.107.67

release-v0.107.66

ADG-10295

release-v0.107.65

release-v0.107.64

release-v0.107.63

release-v0.107.62

release-v0.107.61

release-v0.107.60

release-v0.107.59

release-v0.107.58

ADG-9783

ADG-1-utils-bundle-update

ADG-9415

release-v0.107.57

ADG-9565

release-v0.107.56

release-v0.107.55

release-v0.107.54

release-v0.107.53

infra-fix

upd-locales

release-v0.107.52

release-v0.107.51

AGDNS-2184-adguard-home

AG-32410-upd-dnsproxy

release-v0.107.50

release-v0.107.49

release-v0.107.48

release-v0.107.47

release-v0.107.46

release-v0.107.45

release-v0.107.44

release-v0.107.43

release-v0.107.42

6263-custom-ups-cache

release-v0.107.41

6399-fix-ups-check

release-v0.107.40

release-v0.107.39

release-v0.107.38

release-v0.107.37

6099-check-port-install

release-v0.107.36

release-v0.107.35

6006-refactor-client-lookup

release-v0.107.34

AG-23822

release-v0.107.33

3389-querylog-export

release-v0.107.32

fix-templates

release-v0.107.31

release-v0.107.30

5799-allowed-clients

5347-wildcard-interference

release-v0.107.29

AG-21485

release-v0.107.28

release-v0.107.27

release-v0.107.26

release-v0.107.25

release-v0.107.24

4728-cap-check

release-v0.107.23

release-v0.107.22

2499-rewrites-3

release-v0.107.21

release-v0.107.20

release-v0.107.19

4927-refactor-tls

release-v0.107.18

release-v0.107.17

release-v0.107.16

release-v0.107.15

websvc-confin-manager

release-v0.107.14

2926-lla-ipv6

4926-scroll

release-v0.107.13

release-v0.107.12

release-v0.107.11

release-v0.107.10

release-v0.107.9

WIP-upd-urls

release-v0.107.8

release-v0.107.7

release-v0.107.6

release-v0.107.5

release-v0.107.4

release-v0.107.3

release-v0.107.2

release-v0.107.1

release-v0.107.0

fix-stats-layout

beta-v0.106

release-v0.106.3

release-v0.106.2

release-v0.106.1

fix-client2-generator

dsheets-ipset-subs

fix-context

2044-gc

1691-clear-leases-v2

v0.107.72

v0.108.0-b.82

v0.108.0-b.81

v0.107.71

v0.108.0-b.80

v0.107.70

v0.108.0-b.79

v0.107.69

v0.108.0-b.78

v0.107.68

v0.108.0-b.77

v0.107.67

v0.108.0-b.76

v0.107.66

v0.108.0-b.75

v0.107.65

v0.108.0-b.74

v0.108.0-b.73

v0.107.64

v0.108.0-b.72

v0.107.63

v0.108.0-b.71

v0.107.62

v0.108.0-b.70

v0.108.0-b.69

v0.107.61

v0.108.0-b.68

v0.108.0-b.67

v0.107.60

v0.108.0-b.66

v0.107.59

v0.108.0-b.65

v0.107.58

v0.108.0-b.64

v0.107.57

v0.108.0-b.63

v0.107.56

v0.108.0-b.62

v0.107.55

v0.108.0-b.61

v0.108.0-b.60

v0.107.54

v0.108.0-b.59

v0.107.53

v0.108.0-b.58

v0.107.52

v0.108.0-b.57

v0.107.51

v0.108.0-b.56

v0.107.50

v0.107.49

v0.108.0-b.55

v0.107.48

v0.107.47

v0.107.46

v0.108.0-b.54

v0.107.45

v0.108.0-b.53

v0.107.44

v0.108.0-b.52

v0.107.43

v0.108.0-b.51

v0.107.42

v0.108.0-b.50

v0.108.0-b.49

v0.107.41

v0.107.40

v0.108.0-b.48

v0.108.0-b.47

v0.107.39

v0.108.0-b.46

v0.107.38

v0.108.0-b.45

v0.107.37

v0.108.0-b.44

v0.108.0-b.43

v0.107.36

v0.107.35

v0.108.0-b.42

v0.108.0-b.41

v0.107.34

v0.108.0-b.40

v0.108.0-b.39

v0.107.33

v0.108.0-b.38

v0.108.0-b.37

v0.107.32

v0.108.0-b.36

v0.107.31

v0.108.0-b.35

v0.107.30

v0.108.0-b.34

v0.107.29

v0.108.0-b.33

v0.107.28

v0.108.0-b.32

v0.107.27

v0.108.0-b.31

v0.108.0-b.30

v0.107.26

v0.108.0-b.29

v0.108.0-b.28

v0.107.25

v0.108.0-b.27

v0.107.24

v0.108.0-b.26

v0.107.23

v0.108.0-b.25

v0.107.22

v0.108.0-b.24

v0.107.21

v0.108.0-b.23

v0.107.20

v0.108.0-b.22

v0.107.19

v0.108.0-b.21

v0.107.18

v0.108.0-b.20

v0.107.17

v0.108.0-b.19

v0.108.0-b.18

v0.107.16

v0.108.0-b.17

v0.107.15

v0.108.0-b.16

v0.107.14

v0.108.0-b.15

v0.107.13

v0.108.0-b.14

v0.107.12

v0.108.0-b.13

v0.107.11

v0.108.0-b.12

v0.107.10

v0.108.0-b.11

v0.107.9

v0.108.0-b.10

v0.107.8

v0.107.7

v0.108.0-b.9

v0.108.0-b.8

v0.108.0-b.7

v0.108.0-b.6

v0.107.6

v0.108.0-b.5

v0.108.0-b.4

v0.107.5

v0.107.4

v0.108.0-b.3

v0.107.3

v0.108.0-b.2

v0.108.0-b.1

v0.107.2

v0.107.1

v0.107.0

v0.107.0-b.17

v0.107.0-b.16

v0.107.0-b.15

v0.107.0-b.14

v0.107.0-b.13

v0.107.0-b.12

v0.107.0-b.11

v0.107.0-b.10

v0.107.0-b.9

v0.107.0-b.8

v0.107.0-b.7

v0.107.0-b.6

v0.107.0-b.5

v0.107.0-b.4

v0.107.0-b.3

v0.107.0-b.2

v0.107.0-b.1

v0.106.3

v0.106.3-b.1

v0.106.2

v0.106.2-b.1

v0.106.1

v0.106.1-b.1

v0.106.0

v0.106.0-b.5

v0.106.0-b.4

v0.106.0-b.3

v0.106.0-b.2

v0.106.0-b.1

v0.105.2

v0.105.2-beta.1

v0.105.1

v0.105.1-beta.1

v0.105.0

v0.105.0-beta.5

v0.105.0-beta.4

v0.105.0-beta.3

v0.105.0-beta.2

v0.105.0-beta.1

v0.104.3

v0.104.2

v0.104.1

v0.104.0

v0.104.0-beta3

v0.104.0-beta2

v0.104.0-beta1

v0.103.3

v0.103.2

v0.103.1

v0.103.0

v0.103.0-beta3

v0.103.0-beta2

v0.103.0-beta1

v0.102.0

v0.101.0

v0.100.9

v0.100.8

v0.100.7

v0.100.6

v0.100.5

v0.100.4

v0.100.3

v0.100.2

v0.100.1

v0.100.0

v0.99.3

v0.99.2

v0.99.1

v0.99.0

v0.98.1

v0.98.0

v0.97.1

v0.97.0

v0.96-hotfix

v0.96

v0.95-hotfix

v0.95

v0.94

v0.93

v0.92-hotfix2

v0.92-hotfix1

v0.92

v0.91

v0.9-hotfix1

v0.9

v0.1

Labels

Clear labels   

P1: Critical

  

P2: High

  

P3: Medium

  

P4: Low

  

UI

  

bug

  

cannot reproduce

  

compatibility

  

dependencies

  

docker

  

documentation

  

duplicate

  

enhancement

  

enhancement

  

external libs

  

feature request

  

good first issue

  

help wanted

  

infrastructure

  

invalid

  

localization

  

needs investigation

  

performance

  

potential-duplicate

  

question

  

recurrent

  

research

  

snap

  

waiting for data

  

wontfix

No labels

P1: Critical

P2: High

P3: Medium

P4: Low

UI

bug

cannot reproduce

compatibility

dependencies

docker

documentation

duplicate

enhancement

enhancement

external libs

feature request

good first issue

help wanted

infrastructure

invalid

localization

needs investigation

performance

potential-duplicate

question

recurrent

research

snap

waiting for data

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/AdGuardHome#1437

No description provided.