NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Orbi (RBR50) DNS keeps failing.
Hi, I'm have an RBR50 running Firmware V2.7.2.104 that has been working fine for a couple years now. Very recently, devices connected to the Orbi have started getting failed DNS queries, causing th...
Ran into this issue as well. This Reddit thread has the best workaround I've found for the bug(s) that Netgear pushed out with its most recent release for this model.
https://www.reddit.com/r/orbi/comments/m5l3vk/orbi_dropping_dns/
There are several options. I think the best one is to use the debug.htm page to enable telnet, log in, and modify the DHCP settings to tell clients to contact external DNS servers directly thus bypassing the failing proxy on the router. This change sticks until the router is rebooted which is rare for me. All devices will renew theri DHCP lease within 24 hours (or less) to get the new setting. I recommend forcing devices to renew their DHCP lease to get the new settings sooner. You can unplug the LAN connection, toggle wifi on/off, reboot a device, or issue the command to renew specific to your device/OS. However if you have one computer plugged directly into a LAN port, one simpler way to reset all the wifi attached device's DNS config is to change the wifi name configured on the Orbi, wait a few minutes, and then change it back. I judged "a few minutes" by monitoring my phone to see when it decided the wifi connection was lost. Once back to the original name, my (Android) phone took a couple of minutes to accept the wifi was stable.
There are also reports that the bug is an interaction issue between the DNS process (dnsmasq) and the traffic measuring/metering feature, and that disabling the traffic measuring feature will avoid the bug. Since I don't *need* the measuring feature, I disabled it just in case a thunderstorm glitches the power, there's a chance the Orbi will remain reliable afterwards without the effort/distraction of the reconfiguration workaround.
There is next to zero benefit from running your own local DNS caching server. Your ISPs caching name server speeds are sufficiently fast, as are any of the major player's caching resolvers. Additionally, you're not relying on a device that isn't as well maintained as the major player's resolvers. If your Orbi is compromised, your local cache could be poisened by an attacker, opening up all kinds of security issues.
It's fine if you don't know, or simply don't mind using the local resolver, but I prefer systems that at least give me the option to fully configure my local services.
As for using "orbilogin.com" to logon, I've never done that, nor was I even aware it was an option. Simply browsing to the gateway address and/or using the ORBI app is typically how I access the router.
I had tried a factory reset already, and the problem reoccured not long after. (Same or the next day, if I recall.)
For what it's worth, since I have manually set the DNS servers in the udhcp settings, I have had no issues on the network. I'll deal with re-configuring it should the Orbi ever need to be reset.
Your local cache could be poisoned, yes. But the cache automatically clears itself, either by regarding old entries as stale, and/or by newer cache entries pushing the oldest ones out. You should probably run your own DNS service locally, point the Orbi to it, and have it use DoT/DoH (neither of which the Orbi currently supports) to resolve queries securely from only authoritative DNS resolvers. This is the logical endpoint of your concern about DNS poisoning.
And I discovered after posting my previous reply that the issue was with the traffic meter and daylight saving time settings. The factory reset disabled the traffic meter, which I hadn't gotten around to re-enabling. Subsequently, I restored my saved configuration, disabled DST, changed time zones so the displayed time would be correct, and enabled the traffic meter, and no problems since.