-
Amazon Deals - ToS - Warp
Cloudflare 1.1.1.1 for Families
- Thread starter Sushubh
- Start date
- Replies 15
- Views 3,783
The Mistake that Caused 1.1.1.3 to Block LGBTQIA+ Sites Today
Today we made a mistake. The mistake caused a number of LGBTQIA+ sites to inadvertently be blocked by the new 1.1.1.1 for Families service. I wanted to walk through what happened, why, and what we've done to fix it.
t.co
socrates
I got banned!
lol. probably not. plus i think most of the js is fetched through ip though i have seen domains mentioned as well. they do now have a NextDNS type product that lets you define your own blocklist.
broadband.forum
Cloudflare Gateway | Apps
https://www.loom.com/share/291805a381424b908cc32eda43ad2c66 https://teams.cloudflare.com/gateway/ looks similar to nextdns. https://developers.cloudflare.com/gateway/about/ yeah. this is basically cloudflare's version of nextdns. Firefox Setup Instructions - Cloudflare Gateway (only easy...
broadband.forum
So that's what this was:
Help us test a new version of 1.1.1.1: Public DNS resolver
Short version: Help us test a new version of 1.1.1.1: Public DNS resolver. The new version that the team is working on will make 1.1.1.1 faster. Note that this version of resolver is less stable than the version of 1.1.1.1 that you use today and may run into bugs or edge cases for resolving...
community.cloudflare.com
socrates
I got banned!
DNS over HTTPS settings. No support for DNS over TLS yet. So cannot be used on Android natively for now.
Community Tip - Best Practices for 1.1.1.1 for Families
Overview There are two options for 1.1.1.1 for Families, one blocks all malware and the other blocks malware & adult content. Background Like the 1.1.1.1 Public DNS Resolver, 1.1.1.1 for Families is free. Like all public DNS revolvers, the 1.1.1.1 Public DNS Resolver does not filter any...
community.cloudflare.com
Last edited:
popcorn
Senior Member
Sushubh yesterday half a day i spend with this Private DNS on Samsung A50s , but this family.cloudflare-dns.com does not work. It says Couldn't connect. Only cleanbrowsing works properly if you are in family security - family-filter-dns.cleanbrowsing.org
I research and concluded Cleanbrowsing.org is more systamatic in their approach towards security. Cloudflare.com has messed up with 1.1.1.3 ..... they are still to come up with proper solution for their two new variant for DOH and TLS.
The drawback of cleanbrowsing is that they do not anycast in India. I get their Europe servers which lag.
I research and concluded Cleanbrowsing.org is more systamatic in their approach towards security. Cloudflare.com has messed up with 1.1.1.3 ..... they are still to come up with proper solution for their two new variant for DOH and TLS.
The drawback of cleanbrowsing is that they do not anycast in India. I get their Europe servers which lag.
Last edited:
popcorn
Senior Member
Actually i am using it for my son. He keeps a track of all apps. but this hidden setting down under is the area he would not experiment and hence using cleanbrowsing quietly and is working well. The lag is no issue there..
DOH
Coming to main point, I think Google has rivalry with mainly cloudflare as firefox by default uses the doh with cloudflare. In Chrome DOH is still not available to public unless you use the experiment settings. But it still fails to capture end point of cloudflare family security and uses pure 1.1.1.1 end point automatically. This Automatic capture of end points make it unreliable as they would only work if you have your local DNS set to either cloudflare/opendns/cleanbrowsing and google.
TLS
Atleast in Samsung, the cloudflare family does not connect. I have same feeling like DOH. The Automatic setting in Private DNS is for getting end points automatically if the device identifies that user is using either cloudflare/opendns/google/Clean browsing and automatically convert it to the TLS versions without checking that the family variants are required or generic versions. It will take few months for them to come to proper agreements and policy and then release versions/update addressing this
DOH
Coming to main point, I think Google has rivalry with mainly cloudflare as firefox by default uses the doh with cloudflare. In Chrome DOH is still not available to public unless you use the experiment settings. But it still fails to capture end point of cloudflare family security and uses pure 1.1.1.1 end point automatically. This Automatic capture of end points make it unreliable as they would only work if you have your local DNS set to either cloudflare/opendns/cleanbrowsing and google.
TLS
Atleast in Samsung, the cloudflare family does not connect. I have same feeling like DOH. The Automatic setting in Private DNS is for getting end points automatically if the device identifies that user is using either cloudflare/opendns/google/Clean browsing and automatically convert it to the TLS versions without checking that the family variants are required or generic versions. It will take few months for them to come to proper agreements and policy and then release versions/update addressing this
popcorn
Senior Member
Its auto upgradable in Automatic setting in Chrome & Edge as far I researched.
But many questions are un answered as its not public yet. Firefox & Cloudflare 1.1.1.1 support doh in new releases since long time.
Windows 10 will address this issue as their Insider program is already work in progress. You can join insider program and tweak few regedit entries. (Thought I have stopped doing it as I once had to format my pc)
My understanding is that automatic setting in Android is in principle lines with the Auto upgrade of DOH in browsers. But I am not sure !!
DoH Providers
Here are the providers from milestone 83 and beyond:
*: worldwide
But many questions are un answered as its not public yet. Firefox & Cloudflare 1.1.1.1 support doh in new releases since long time.
Windows 10 will address this issue as their Insider program is already work in progress. You can join insider program and tweak few regedit entries. (Thought I have stopped doing it as I once had to format my pc)
My understanding is that automatic setting in Android is in principle lines with the Auto upgrade of DOH in browsers. But I am not sure !!
DoH Providers
Here are the providers from milestone 83 and beyond:
| Provider | Auto-upgradeable | Settings | Countries |
| Cleanbrowsing | ✓ | ✓ | * |
| Cloudflare | ✓ | ✓ | * |
| Comcast | ✓ | (N/A) | (N/A) |
| DNS.SB | ✓ | ✓ | EE, DE |
| ✓ | ✓ | * | |
| IIJ | (N/A) | ✓ | JP |
| OpenDNS | ✓ | (M85: TBC) | (M85: TBC) |
| Quad9 | ✓ | ✓ | * |
| CZ.NIC ODVR | (M84: ✓) | (M85: TBC) | CZ |