Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
16742
Views
5
Helpful
7
Replies

Strange DNS Problems

Go to solution
NunoFlora
Community Member

‎03-30-2022 03:55 AM

I have a DNS problem in a network of 500 users, some devices connect to the wifi in one of the ssid and after connection ok they use chrome that tells them the dns did not respond i check the logs in meraki and see "DNS server did not respond".

I'm using google 8.8.8.8 and 8.8.4.4 but for some reason it gives me this errors but I can use a computer and ping 8.8.8.8 and 8.8.4.4 no problem but can't get dns in chrome our other web browser.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
NunoFlora
Community Member
In response to securingnimbu5

‎04-12-2022 08:31 AM

I still don't know what the problem is but changed dns to 1.1.1.1 and solved all the dns problems

View solution in original post

0 Helpful
7 Replies 7

Go to solution
aleabrahao
Meraki Community All-Star
Meraki Community All-Star

‎03-30-2022 04:26 AM

Is The Client IP assignment NAT mode or Bridge mode?

I am not a Cisco employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

Go to solution
Philip D'Ath
Meraki Community All-Star
Meraki Community All-Star

‎03-31-2022 12:08 PM

If you use nslookup, can you resolve a DNS name?

Chrome changed over to using DNS over HTTPS at some stage, so it may not be sending DNS queries as you think. I think it was optional initially and then became the default. You could try a test and disable DNS over HTTPS on one machine and see if that changes the problem.

https://pureinfotech.com/enable-dns-over-https-chrome/

Are you using any third-party filtering software, either for DNS or HTTPS?

Go to solution
MerryAki
Level 5
Level 5
In response to Philip D'Ath

‎04-02-2022 08:30 AM

I would also mention DNS over TLS as a possible problem. Try to do a trace route anc check for rules that block traffic to the DNS Server/s.

Another thing that might be required at some point is DNSSEC, give 9.9.9.9 a chance. (Cloudflare is of course a good one, too, but not in terms of security and threat defending)

Go to solution
securingnimbu5
Community Member
In response to MerryAki

‎04-03-2022 01:21 AM

@MerryAki I have to agree with you here.

My thoughts:


If he can ping successfully, but can’t visit web pages through browsers; then we know the issue lies with “host names not resolving”.


I would capture the DNS traffic and find out where it’s getting dropped. Then check the ACL to see if DNS traffic is allowed on port 53. Cheers!

Go to solution
NunoFlora
Community Member
In response to securingnimbu5

‎04-12-2022 08:31 AM

I still don't know what the problem is but changed dns to 1.1.1.1 and solved all the dns problems

0 Helpful

Go to solution
MerryAki
Level 5
Level 5
In response to NunoFlora

‎04-12-2022 08:37 AM

Or try preselecting Google or Cisco Umbrella DNS

But yes, cloudflare is performing better ✌️

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card