Jump to content
Not connected, Your IP: 3.145.191.128
AirVPN
user0106390

Recommended Posts

Ernst89    11

Ernst89
Posted ...

I don't think it is an AirVPN problem, per se..

I think this is a DNS problem. I had this problem a while ago and can't quite remember the details, but I'll give my jumbled recollection and hopefully it will jog someone into a correct explanation.

AIUI nhs.uk uk uses its own DNS nameserver and your DNS nameserver should forward a DNS query for nhs.uk to the DNS servers nsa.nhs.uk  or nsb.nhs.uk and then return the query to you.

This will break if your DNS server is not set to forward queries.

For instance I use pfSense, DNS Resolver.

Solution for pfSense DNS Resolver:
/Services/DNS Resolver/General Settings/DNS Query Forwarding
tick Enable Forwarding Mode

Caveat - i'm too busy to test at the moment but think it is the solution. Hopefully you can adapt it to your set up.

Share this post

Link to post

user0106390    1

user0106390
Posted ...
1 hour ago, Ernst89 said:

I don't think it is an AirVPN problem, per se..

I think this is a DNS problem. I had this problem a while ago and can't quite remember the details, but I'll give my jumbled recollection and hopefully it will jog someone into a correct explanation.

AIUI nhs.uk uk uses its own DNS nameserver and your DNS nameserver should forward a DNS query for nhs.uk to the DNS servers nsa.nhs.uk  or nsb.nhs.uk and then return the query to you.

This will break if your DNS server is not set to forward queries.

For instance I use pfSense, DNS Resolver.

Solution for pfSense DNS Resolver:
/Services/DNS Resolver/General Settings/DNS Query Forwarding
tick Enable Forwarding Mode

Caveat - i'm too busy to test at the moment but think it is the solution. Hopefully you can adapt it to your set up.


I'm using the Eddie client for Windows, which uses AirVPN's DNS servers by default.

Share this post

Link to post

Ernst89    11

Ernst89
Posted ...

OK, short answer is that the NHS DNS servers ( nsa.nhs.uk,nsb.nhs.uk ) are blocking DNS queries from Geminorum .
If you want a work around use a different DNS server, i.e. google 8.8.8.8. Most NHS HTTP servers (not DNS servers) do not appear to be blocking Geminorum .

Longer answer
My previous post was muddled and incorrect.

The correct answer is that DNS servers are hierarchical. DNS queries can be recursive or iterative. Recursive DNS queries will be ok as DNS servers (from Geminorum ) do not query NHS DNS servers directly. An iterative query from a DNS server via  Geminorum will fail as it will try to query the NHS DNS servers directly ( nsa.nhs.uk,nsb.nhs.uk ).

You can see all this yourself using DIG, NSLOOKUP of similar DNS query command to query specific servers.

Correction to previous post pfSense DNS Resolver uses a recursive DNS query and hence does not have a problem with nhs.uk.




 

Share this post

Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
  • Security Check
    Play CAPTCHA Audio
    Refresh Image
Go To Topic Listing
×
×
  • Create New...