NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

C0NN0RAD0's avatar
C0NN0RAD0
Follower
Sep 08, 2022

Nighthawk Blocking whole network DNS

Hi Forums Goers,   I Am desperately reaching out here as I wasn't too sure where else to start, our family home has a Nighthawk X6 AC3200 Router we got it because our ISP router wasn't very good an...
NETGEAR Armor
Troubleshooting
michaelkenward's avatar
michaelkenward
Guru - Experienced User
Sep 08, 2022

First question, what is the modem/gateway that connects your router to the internet?

 

Next one, what firmware version do you have on the device?

A number is more useful than "the latest". (It may not be by the time people read this.) There can also be newer versions, or "hot fixes", that do not show up if you check for new firmware in the browser interface.

  • ClarkRay82's avatar
    ClarkRay82
    Initiate
    Sep 14, 2022

    I Would believe that the router sounds to have Circle (Strong parental controls) active or Netgear Armour (focuses more on protecting network from threats like Phishing, Attacks, Scam Mail, etc) which both serve functions of protecting network / users via blocking certain services and websites. Also the probability there are just general parental controls enabled on the router.

     

    Either way these are all accessible in the Netgear App you use to manage router and via the router interface in your browser.

     

    Where i think this relates to your problem is if theres settings active to block adult content or VPN's and other types of miscellaneous services it is very likely (because you mentioned that it only happens when an abundance of Apple devices come back onto the network) that a sort of mini DDOS or DOS (where the network is overloaded and suffers) is happening because it is blocking so many requests from all these devices.

     

    It is all very likely these were activated when Apple started closing down on privacy and tracking and their Private Relay feature as Apple devices connect through any of Apples Domains so the network is likely now told to block a large majority of Apple's traffic. 

     

    It is likely even for things like iMessage, Facetime, Safari, Mail, Gamecentre, App Store, Apple music that the network might be deeming this traffic as hostile as its told to block VPN's etc (which is essentially what Apples Private Relay is) as the devices connect through any of Apples services.

     

    Example is the domains Apple Devices use to connect to Private Relay:

    mask.icloud.com
mask-h2.icloud.com

    But as i said can communicate through Apples other domains too.

     

    If you was to add these domains as an exception it may fix your issue, but you said you've disabled Private Relay and its still occuring, so add exceptions for Apple's other Domains too that your Apple Devices make requests to. You can also likely see these being flagged by the router.

     

    time.apple.com

    *.push.apple.com

    icloud.com

    Apple.com

    *.itunes.apple.com

    itunes.apple.com

    itunes.com

    *.apps.apple.com (might cause network issues if updating a lot of apps automatically overnight)

    appleid.apple.com

    *.apple-cloudkit.com

     

    "If your firewall supports using hostnames, you might be able to use most Apple services above by allowing outbound connections to *.apple.com. If your firewall can only be configured with IP addresses, allow outbound connections to 17.0.0.0/8. The entire 17.0.0.0/8 address block is assigned to Apple."

     

    You can view Apple's whole article of Domains here but i truly believe that how you described this issue and being Apple Devices that this should 99% fix this issue.

     

    That is my most in-depth answer yet and i really hope it helps you!