←back to thread

1.1.1.1: Fast, privacy-first consumer DNS service

(blog.cloudflare.com)
1895 points _l4jh | 7 comments | 01 Apr 18 12:14 UTC | HN request time: 0.726s | source | bottom
1. lepouet ◴[01 Apr 18 15:15 UTC] No.16728685[source]
My FAI, Orange in France, seems to block/redirect acces to https://1.1.1.1 , i see great irony here.

Chrome security warning when i try to access it, ping <1ms when ping ip adress.

replies(2): >>16728719 #>>16729828 #
2. halbritt ◴[01 Apr 18 15:23 UTC] No.16728719[source]
It's very likely that they have 1.1.1.1 in their "bogons" list and have for a very long time.

Bogons are a list of prefixes that most ISPs blackhole as there is usually never any legitimate traffic bound for those destinations. RFC1918 addresses, for example.

I can't reach 1.1.1.1 either, but 1.0.0.1 works fine. Maybe try that.

replies(1): >>16771561 #
3. __david__ ◴[01 Apr 18 18:56 UTC] No.16729828[source]
My AT&T fiber is blocking 1.1.1.1, too. But 1.0.0.1 is working.
replies(1): >>16730087 #
4. jmuguy ◴[01 Apr 18 19:55 UTC] No.16730087[source]
Same, ATT Fiber in Charlotte NC
replies(1): >>16735390 #
5. jlgaddis ◴[02 Apr 18 15:31 UTC] No.16735390{3}[source]
Which AT&T modem do you have? I'm seeing this w/ 5268AC, trying to find others that are affected as well.
replies(1): >>16738447 #
6. jlgaddis ◴[02 Apr 18 19:39 UTC] No.16738447{4}[source]
If it's not the 5268AC, please let marty at cloudflare dot com know as well. According to a reply on NANOG, he is interested in knowing about other broken CPE.
7. plb4333 ◴[06 Apr 18 07:27 UTC] No.16771561[source]
Could it be that 1.1.1.1 is blocked because it uses a secure protocol as opposed to 1.0.0.1 which is unsecure. This would be for the sake of monitoring traffic.