As the title says I want to change the DNS for both Wi-Fi and data to Google's DNS servers.
Before this phone I used a Magisk module to change the DNS for my Mi Pad 4 (Wi-Fi only), but the module is not available anymore and I don't think it works for data networks.
All methods are welcome: ADB, terminal (root), Magisk module, app (root)...
Nemix77 said:
As the title says I want to change the DNS for both Wi-Fi and data to Google's DNS servers.
Before this phone I used a Magisk module to change the DNS for my Mi Pad 4 (Wi-Fi only), but the module is not available anymore and I don't think it works for data networks.
All methods are welcome: ADB, terminal (root), Magisk module, app (root)...
Click to expand...
Click to collapse
Can't you just use a DNS changer app that acts as a VPN
Also on AOSP you can change your DNS in network and internet settings under private DNS
I'll look into it, I'd rather not go through a VPN. The description for the app is a bit confusing.
Miui has private DNS also, but IPv4 addresses are not accepted.
I think I have to provide the Google's host name for private DNS to work?
The Magisk module I used a while back uses terminal and requires root.
Nemix77 said:
Miui has private DNS also, but IPv4 addresses are not accepted.
I think I have to provide the Google's host name for private DNS to work?
Click to expand...
Click to collapse
You can use hostnames :
1dot1dot1dot1.clouldflare-dns.com
dns.quad9.net
dns.google
1695 said:
You can use hostnames :
1dot1dot1dot1.clouldflare-dns.com
dns.quad9.net
dns.google
Click to expand...
Click to collapse
Personally I use dns.adguard.com it doesn't track and is quite good and at blocking ads
1695 said:
You can use hostnames :
1dot1dot1dot1.clouldflare-dns.com
dns.quad9.net
dns.google
Click to expand...
Click to collapse
I'm a networking specialist and the network settings on Android (perhaps it's just Miui) make no sense at all.
It's very basic and counter intuitive to have hostnames for DNS servers for DNS settings.
All other operating systems including Cisco's IOS (which is based on Unix) uses 32-bit or 128-bit addresses for DNS, simply because these are direct IP addresses and are not alias hostnames.
Furthermore, direct public IP addresses do not need to be translated from hostname to IPv4/IPv6 address blocks in order to contact the DNS server, it's the DNS server's job for address translation.
Both Linux and Windows Servers need administrative/root (su) permissions to set the DNS addresses, I was expecting the same thing on Android (root permission via Magisk) since the kernel is based on Linux.
Despite my annoyance, thanks for all the help guys!
Blokada. I use it since last year, it acts like a vpn but u only have a vpn if u pay the premium, the free version allows you to block tracking, ads and change dns from both wifi and mobile. Doesn't drain battery.
Blokoda for blocking ads goes through a VPN server, that's understandable.
Edit:
Much easier to understand and search if they just label private DNS as DoT and DoH, currently not implemented in company networks yet.
Hello,
I am an experienced user on jailbroken ios and I inform you that we can change the dns server just by defining an ip address and its working and by just editing a system file, no need for third party application or vpn.
I change dns as if I were on windows I defined the dns ip address and it all works immediately in 4G cellular data.
On android at the time on android kitkat 4.4.4 or 4.4.2 and lollipop 5.0.1 and 5.1.1 you could change the dns server by editing the build prop and its market perfectly in mobile data and wifi.
Then in December 2020 I bought a smartphone to go back to android for the custom modding side so I bought the S20 FE 5G under android 10 and the dns in cellular 4G does not work at all, even by putting a domain name it didn't work at all.
On android the dns in wifi can be changed but the mobile data I couldn't find, so I went back to jailbroken ios a thousand times better than a personalized android.
roid personnalisé.
yassine71100 said:
Hello,
I am an experienced user on jailbroken ios and I inform you that we can change the dns server just by defining an ip address and its working and by just editing a system file, no need for third party application or vpn.
I change dns as if I were on windows I defined the dns ip address and it all works immediately in 4G cellular data.
On android at the time on android kitkat 4.4.4 or 4.4.2 and lollipop 5.0.1 and 5.1.1 you could change the dns server by editing the build prop and its market perfectly in mobile data and wifi.
Then in December 2020 I bought a smartphone to go back to android for the custom modding side so I bought the S20 FE 5G under android 10 and the dns in cellular 4G does not work at all, even by putting a domain name it didn't work at all.
On android the dns in wifi can be changed but the mobile data I couldn't find, so I went back to jailbroken ios a thousand times better than a personalized android.
roid personnalisé.
Click to expand...
Click to collapse
You don't need root to change DNS on Android. You can use Private DNS which work on both WiFi and Mobile Data just fine. I don't think you can do that on iOS without jailbreaking.
kima09 said:
You don't need root to change DNS on Android. You can use Private DNS which work on both WiFi and Mobile Data just fine. I don't think you can do that on iOS without jailbreaking.
Click to expand...
Click to collapse
Hello,
Android's private dns does not work very well precisely depending on the dns server.
When I enter the DNS domain name and well it does not work at all!
This "FDN" DNS server, for example, does not work on Android at all, even when entering its domain name.
FDN - Fournisseur d'Accès à Internet associatif depuis 1992
Going back to ios you can change the dns without jailbreak it's possible but you have to go through an application etc which simulates a vpn connection, except.
Off on ios at least once root I can define the dns server of my choice by defining an ip address as on windows when you change the dns server, also it works afterwards in non-jailbreak mode.
On my iPhone my DNS at FDN works perfectly 3G/4G/5G Wifi.
If on android I can define the dns server of my choice by entering the dns ip address it's perfect but unfortunately it's not the case!
Related
//edit: DNS issue fixed, reusing this thread for another issue.
On Windows PPTP VPN connections, you can select whether or not the default gateway gets set to that of the VPN server. In the Android VPN client, it automatically sets the default gw to the VPN server.
Any way to prevent this from happening?
DNS issue fixed, re-using this post for another problem
liquidkernel said:
//edit: DNS issue fixed, reusing this thread for another issue.
On Windows PPTP VPN connections, you can select whether or not the default gateway gets set to that of the VPN server. In the Android VPN client, it automatically sets the default gw to the VPN server.
Any way to prevent this from happening?
Click to expand...
Click to collapse
How did you resolve this issue?!
scriptx said:
How did you resolve this issue?!
Click to expand...
Click to collapse
DNS issue was something weird, it had to do with my ROM.
I still haven't resolved the ability to keep your default gateway instead of changing to the one of the VPN. So I only connect when I need to, but it would be great to be always connected so I can have access to my NAS.
Hello, I apologize if this thread has been created, but I cannot find anything searching "vpn" in this forum since its only 3 chars long.
I would like to connect my G2 to my work's intranet via VPN. I can successfully do so via the built in options under Wireless & Networks option. However I have slight inconveniences with that option.
#1 DNS does not work. I cannot resolve any internal IPs once connected to the VPN which makes the VPN connection useless unless I memorize all the IPs. I manually set the DNS Search Domains option in the VPS settings, but I am still connected to some other DNS server according to IPDroid app.
#2 No password remembering. I dislike having to open up the keyboard to type the password.
Is there a market app that will satisfy my above 2 requirements while doing everything the stock option will allow?
Not out there yet...
Google
VPN for Andriod
Read this
https://supportforums.cisco.com/thread/2012285
Hey everyone. Was curious if anyone has tried a VPN application on the Nexus. Not sure if stock kernel would even support it. I currently use VPN Connections on my Droid Incredible CM7, as it was only easy vpn app I found to connect to my cisco vpn network at work.
Yeah you need custom kernel and root.
Sent from my Galaxy Nexus using XDA App
No root or custom kernel with Columbitech! All stock client with Android 4.0! Two factor authentication, 256 bit AES encryption, FIPS 140-2 certification and session persistence!
https://market.android.com/details?...51bGwsMSwyLDEsImNvbS5jb2x1bWJpdGVjaC5tVlBOIl0.
Wait, I thought ICS added Cisco VPN support. Why bother with rooting or Columbitech?
https://code.google.com/p/android/issues/detail?id=3902#c1537
Cisco VPN now works, at least against the ASA5505 I'm testing against. It accepts Group Names under IPSec/L2TP/PSK. Key in your group name and password, and it should work. Have not messed with certificates yet.
Works for me too (don't know the model).
This release is all kinds of awesome
alee said:
Cisco VPN now works, at least against the ASA5505 I'm testing against. It accepts Group Names under IPSec/L2TP/PSK. Key in your group name and password, and it should work. Have not messed with certificates yet.
Click to expand...
Click to collapse
What about SSL VPN (i.e. Cisco AnyConnect)?
Chirality said:
What about SSL VPN (i.e. Cisco AnyConnect)?
Click to expand...
Click to collapse
Cisco has Anyconnect apps in the market for SSL VPN. You have to have the corresponding mobile licenses installed in the ASA first.
davanw said:
Cisco has Anyconnect apps in the market for SSL VPN. You have to have the corresponding mobile licenses installed in the ASA first.
Click to expand...
Click to collapse
Hmm...looks like it either requires root or a specific hardware vendor's ROM to work. Guess they haven't updated it to use the ICS VPN API yet.
Hmmmm today Im try connect to Cisco VPN which use Group Authentication but failed. On PC I use Cisco VPN Client version 5.0.07.0290 and can normaly connect.
I don't use certificates.
I have selected IPSec over UDP (NAT / PAT).
I have Host, Group Name, Group Password, User Name, User Password which I must write in which edit box on android?
Few of you mention to use it already supports it. I tried to setup one with L2TP/IPSec PSK. Entered the server name. Which fields do you put the group username and password in?
Thanks in advance!
I'm using the IPSec XAuth PSK setup filling the IPSec identifier with group and IPSec pre shared key with the shared password. I didn't need to use the advanced section.
I just basically went through each setup option until I hit the right combination.
That worked! Thanks. Now is there a way to get around requiring a passcode to unlock the phone?
good god that was so much easier than setting up my transformer for this. thanks everyone for the guidance. Any idea if there's a widget that will just turn a specific vpn on/off?
I'm using a Cisco IPSEC VPN concentrator. with PSK auth.
I'm able to connect but i can't route any traffic.
When i connect from my desktop i use to get a /24 IP with a default gw, when connecting from my phone all i get is a /32 ip and no default gw
Hi everyone,
I noticed that since Android Pie, the default gateway for tethering (which is the phone's IP) changes every time I enable the feature.
On Oreo it was always 192.168.43.1
In most cases this shouldn't be a problem, as the connected devices gets automaticaly the default gateway.
But if for some reason you need to set up a device with static IP, you have to manually change the default gateway every time it connects to the phone (otherwise the device may not have access to the internet)
So, does anyone know a way to freeze this address ? (without root...)
Mellow971 said:
Hi everyone,
I noticed that since Android Pie, the default gateway for tethering (which is the phone's IP) changes every time I enable the feature.
On Oreo it was always 192.168.43.1
In most cases this shouldn't be a problem, as the connected devices gets automaticaly the default gateway.
But if for some reason you need to set up a device with static IP, you have to manually change the default gateway every time it connects to the phone (otherwise the device may not have access to the internet)
So, does anyone know a way to freeze this address ? (without root...)
Click to expand...
Click to collapse
Its ip/mac spoofing, on by default. Dont worry, its more secure this way, wont effect performance
boe323 said:
Its ip/mac spoofing, on by default. Dont worry, its more secure this way, wont effect performance
Click to expand...
Click to collapse
Thanks for your reply, I understand that it's more secure and I don't worry about performances.
But I would like to set one device with static IP and gateway, so that I can switch to another network without having to reconfigure.
So is there a way to disable this ? That is the question...
@Mellow971
Try what's suggested here:
https://android.stackexchange.com/q...nently-change-my-hotspot-tethering-ip-address
The latest Android developments, starting with 8 (Oreo) are rather sad and obstructive (lately you can't even find the DHCP allocated IP address in the WiFi connection details section ), apparently a result of younger developers showing off with stupid features, not really understanding how the underlying communication & protocols are really functioning.
What @boe323 was explaining is utterly false, because there is no way you could implement a proper ip/mac spoofing protection.
- if the WiFi network is open, it's really easy for a malevolent actor to identify the GW and MAC address and clone it, it only requires a DHCP bcast/query packet.
- in a protected WiFi network (WPA/WPA2), the malevolent actor has no way to perform an ip/mac spoofing if it doesn't successfully authenticate in the protected network.
- the actor can perform a MiM attack and spoof the protected WiFi network ESSID, but for that any DHCP ip/mac spoofing protection is again useless.
I'm also having an issue with this useless IP/MAC spoofing protection implemented in the latest Android, because I have a router configured to connect through a secondary WiFi card to my phone as an Internet fail-over scenario (in case my main Internet connection fails). I configured it with static addresses - both host and GW (192.168.43.1), and doing SNAT. I had to change it to DHCP and using MASQUERADING, just a dumb overcomplication caused by some young developers that have no clue what they're doing.
helloyello said:
@Mellow971
Try what's suggested here:
https://android.stackexchange.com/q...nently-change-my-hotspot-tethering-ip-address
Click to expand...
Click to collapse
Sadly I don't have root access
But I managed to live with that (and many other stupid features...)
Hi,
I configured my pihole as primary DNS and Google (8.8.8.8) as secondary DNS on my DHCP server which just works fine on my laptops and computers. On my P6P the local IP of the pihole is ignored as DNS when I register the phone with the WLAN using DHCP. Under DHCP the primary (and sole) DNS is 8.8.8.8 and the phone also doesn't appear in the logs of the pihole. To get the phone using my pihole I have to assign a static IP with the pihole's IP as primarary DNS. Anybody else using a pihole and experiencing this issue?
Thanks
I was using my Pihole with my 4XL and yes I did have to assign a static IP so that I could maintain the DNS connection with the device. Also I didn't give a secondary DNS for it to fall back to which did work for me so you could try that as well. Not saying that Dynamic doesn't work, but Google does a lot of messing with your connectivity in the background apps of the device and unless you give it no other options there is a chance it could prioritize Google's DNS given the ability to choose.
That is speculation on my part but only having the Pihole DNS on my device worked well and did what I needed it to do. Static IP worked for me when Dynamic didn't on Nest WiFi.