Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

127.0.0.1 DNS-resolution is blocked by some ISPs #15

Open
rjhuijsman opened this issue May 10, 2024 · 0 comments
Open

127.0.0.1 DNS-resolution is blocked by some ISPs #15

rjhuijsman opened this issue May 10, 2024 · 0 comments
Labels
Star I think it is a very good insight

Comments

@rjhuijsman
Copy link

(I don't think there's anything we can do about this, but I thought this would be useful to report, as documentation)

While using localhost.direct in a few places worldwide, I've noticed that there's some ISPs that block the DNS-resolution of localhost.direct and any other domain name that resolves to 127.0.0.1. A RIPE Atlas probe showed about 12% of DNS requests for localhost.direct get rejected in some way or another (i.e. not resulting in an A-record with 127.0.0.1).

Asking some friendly DNS operators, they say such filtering is to assuage XSS concerns, and prevent DNS rebinding attacks.

Workarounds that have worked for me:

  • Adding the following to my /etc/hosts, so no DNS lookup is required:
127.0.0.1 localhost.direct
  • Using a VPN, so that the local ISP can't filter my DNS traffic.
@Upinel Upinel added the Star I think it is a very good insight label Nov 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Star I think it is a very good insight
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Upinel @rjhuijsman