Products Firewalla Gold SE Firewalla Gold Pro Firewalla Gold Plus Firewalla Purple Firewalla Purple SE Firewalla Wi-Fi SD Product Comparison Product Reviews

Not able to reach certain sites as of 8/8/2022

Follow
Avatar
b8cons

I have 10 FWGold and 1 FWPurple devices, for about 8 months and they've been working ok until Monday 8/8/2022

my FWP and 3 FWG confirmed with this issue:

certain wifi devices are able to reach certain sites, but not others

i can't reach:

youtube.com, bing.com, google.com, gmail.com, and more

i can reach: 

firewalla.com, netgear.com, and more

blocked flows show nothing is being blocked

if i restart the modem/firewalla/router, the sites work for a moment.

if I remove the firewalla and all sites work.

place the wifi (iphone/ipad) device in emergency access, and sites all work

if I turn off monitoring on Firewalla, and all sites work

i have a ticket open with Firewalla support, just reaching out to the community to see if they have this issue since 8/8/2022, i suspect it's due to a Firewalla update.

1

Comments

10 comments

Sort by Date Votes
  • Avatar
    Firewalla

    If emergency access works, then the problem is very likely

    1. You have a rule that's blocking these services.
    2. Or, you have another DNS service outside of the firewalla blocking these

    If you don't have many rules, you can go and pause them ... If you have a DNS service that's not the popular ones, try to disable that. 

    0
    Comment actions Permalink
  • Avatar
    b8cons
    • Edited

    i paused all my rules

    i use these three DNS: 1.1.1.1, 8.8.8.8, 4.2.2.1

    i have another Firewalla Gold that is on the Beta release and it's fine, i downgraded it back to the stable release and still seems fine.

    does anyone else have this issue?

    0
    Comment actions Permalink
  • Avatar
    John D Uhlmann
    • Edited

    Yes.

    No issues until recently when suddenly my work laptop was unable to reach youtube.com despite no blocking rules being active.
    Other devices appear to be fine.
    Enabling emergency access "resolved" the issue.

    I use 1.1.1.2 for DNS.

    0
    Comment actions Permalink
  • Avatar
    b8cons
    Today i factory reset my Firewalla purple, and now everything is working fine. I have yet to factory reset the FWG that are in production, but Firewalla support has gone into my purple multiple times and they just concluded that it was my rules, but I had no rules. the workaround since 8/8 was to turn off monitoring or turn on emergency access on the specific wireless devices that were affected. The wired devices don't seem to be affected.  before factory reset, i also tried the "Reset Policy Rules", which didn't help.
    0
    Comment actions Permalink
  • Avatar
    Firewalla

    May I know your case number? I can esclate it. What I know is, if emergency mode works, the probability of a rule is messing up (including things like ad blocker, DoH, or force to use your personal DNS servers) is very very high.

    0
    Comment actions Permalink
  • Avatar
    b8cons
    • Edited

    case number 50750

    so if it was:

    2. Or, you have another DNS service outside of the firewalla blocking these

    wouldn't the wired devices be affected also?  because seems like only wireless devices like iphones, ipads, echo dots, roku streaming stick, etc

    0
    Comment actions Permalink
  • Avatar
    ebockelman

    This seems similar to what I have been seeing as well. As a troubleshooting step, would you mind trying disabling DNS Booster for a host when you are having the issue? I've found that if I turn that off for a host when I see the issue that host suddenly works. 

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    Disabling DNS booster is exactly same as putting the device in emergency access mode. When you turn off, all the DNS related features (blocks, DNS re-route, rules) will not work. 

    If disabling DNS booster works, then very likely the following are issues

    1. you have rule some where that's blocking. The block is DNS block. (domain only)
    2. you are using a DNS server that's not traditional, and that is blocking
    0
    Comment actions Permalink
  • Avatar
    b8cons

    does 'DNS booster' go by a different name?

    i don't see that option in my FWG or FWP

    0
    Comment actions Permalink
  • Avatar
    b8cons

    ok, we did a little research and found that at 2 of our locations, we have Google Wifi, in the FWA forums, someone said it doesn't play nice with FWA, so we've replaced it with an Netgear Orbi mesh and disabled monitoring on those satellites.  so far, 2 days, and it's good, but we've factory reset them.

    it could be a combination of issues, not disabling monitoring on the satellites and google wifi.

    i have 10 Firewalla Golds, and 1 Firewalla purple

    0
    Comment actions Permalink

Please sign in to leave a comment.

Didn't find what you were looking for?

New post