Googleadservices

Started by t84a, April 21, 2025, 10:18:57 PM

Previous topic - Next topic
Print
Go Down Pages 1 2 3
User actions
April 23, 2025, 09:21:16 PM #15
More:
April 24, 2025, 12:15:27 AM #16 Last Edit: April 24, 2025, 12:21:25 AM by EricPerl
The DNS lookup from OPN (last screenshot) is a dead giveaway that this particular FQDN is blocked (0.0.0.0) by OPN or its upstream server(s).

You can identify the process handling DNS using
Code Select
sockstat | grep :53Console or ssh.

Then you can dig in the configuration of that service.

Edit: ping failed on OPN because the DNS query returned 0.0.0.0 (typical blocked behavior) from OPN.
As you can see from your last post, if you resolve externally, you can ping that site from your Windows machine.
April 24, 2025, 01:14:49 AM #17
Thanks. Unfortunately, we're starting to get above my head.
April 24, 2025, 08:12:18 AM #18
Let's assume you are using Unbound (default on OPN) then.

Take screenshots of the General, Overrides, Blocklist (advanced mode checked), Query Forwarding, and DNS over TLS config pages.
April 24, 2025, 01:53:58 PM #19
Thanks Eric.
April 24, 2025, 01:55:48 PM #20
You have a blocklist enabled. What do you expect? It blocks ads - that's the point. Disable the blocklist feature and the problem will be solved.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
April 24, 2025, 02:02:07 PM #21
Quote from: Patrick M. Hausen on April 24, 2025, 01:55:48 PMYou have a blocklist enabled. What do you expect? It blocks ads - that's the point. Disable the blocklist feature and the problem will be solved.

Post #1
April 24, 2025, 02:43:53 PM #22
So if you disable the blocklist, then restart Unbound, you still get 0.0.0.0?
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
April 24, 2025, 02:56:55 PM #23 Last Edit: April 24, 2025, 03:00:36 PM by t84a
Quote from: Patrick M. Hausen on April 24, 2025, 02:43:53 PMSo if you disable the blocklist, then restart Unbound, you still get 0.0.0.0?
April 24, 2025, 03:16:24 PM #24
And the result of an nslookup on that desktop system with the error message gives what address?
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
April 24, 2025, 04:33:23 PM #25 Last Edit: April 24, 2025, 04:36:27 PM by t84a
Quote from: Patrick M. Hausen on April 24, 2025, 03:16:24 PMAnd the result of an nslookup on that desktop system with the error message gives what address?

April 24, 2025, 05:19:49 PM #26
Is that a web page that performs a lookup? I meant open a command line window and type "nslookup www.googleadservices.com" followed by the ENTER key. When you receive IP addresses, no filtering is taking place. When you receive "0.0.0.0" *something* is still filtering that request.

You have problems connecting to googleadservices.com from a PC behind your OPNsense, right? So a web service somewhere on the Internet performing a lookup is pretty worthless. We need to check what your PC receives.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
April 24, 2025, 05:24:44 PM #27 Last Edit: April 24, 2025, 05:27:50 PM by verfluchten
Quote from: Patrick M. Hausen on April 24, 2025, 05:19:49 PMIs that a web page that performs a lookup?
It looks like some sort of Network Tools web site, so the OP is not running this from their system/LAN while they should.

None of this is rocket science. If something is not working on the Internet, you have one or several of the following reasons:
1. DNS server is not resolving.
- It simply does not have an address record for the name.
- It has but refuses to resolve, i.e. has a block.
2. hosts file overrides DNS resolution.
3. Firewall is blocking.
4. You are using a proxy that is blocking the address.
5. You are using a personal firewall on your device.
When you suspect that DNS or firewall are blocking, you ssh into the OS and use its shell to run nslookup or ping, to eliminate anything on your device or your LAN before the OS router.
Copy/paste this comment into a text file and keep it for future reference.
April 24, 2025, 05:54:23 PM #28
Quote from: Patrick M. Hausen on April 24, 2025, 05:19:49 PMIs that a web page that performs a lookup? I meant open a command line window and type "nslookup www.googleadservices.com" followed by the ENTER key. When you receive IP addresses, no filtering is taking place. When you receive "0.0.0.0" *something* is still filtering that request.

You have problems connecting to googleadservices.com from a PC behind your OPNsense, right? So a web service somewhere on the Internet performing a lookup is pretty worthless. We need to check what your PC receives.

From Command Prompt, all zero
April 24, 2025, 06:00:31 PM #29 Last Edit: April 24, 2025, 06:03:07 PM by t84a
Quote from: verfluchten on April 24, 2025, 05:24:44 PM
Quote from: Patrick M. Hausen on April 24, 2025, 05:19:49 PMIs that a web page that performs a lookup?
It looks like some sort of Network Tools web site, so the OP is not running this from their system/LAN while they should.

None of this is rocket science. If something is not working on the Internet, you have one or several of the following reasons:
1. DNS server is not resolving.
- It simply does not have an address record for the name.
- It has but refuses to resolve, i.e. has a block.
2. hosts file overrides DNS resolution.
3. Firewall is blocking.
4. You are using a proxy that is blocking the address.
5. You are using a personal firewall on your device.
When you suspect that DNS or firewall are blocking, you ssh into the OS and use its shell to run nslookup or ping, to eliminate anything on your device or your LAN before the OS router.
Copy/paste this comment into a text file and keep it for future reference.

I'm basically using OPNSense with no modifications.  It does it from my phone as well when connected to wifi.
Print
Go Up Pages 1 2 3
User actions