Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




940 posts

Ultimate Geek


#240083 19-Aug-2018 21:51
Send private message

Ok, so I have my new grandstream router up and working, but I'm having a problem with my PLEX server. I think it is to do with DNS rebinding as per here, as I can no longer direct connect to it securely. I had the same issue with the fritzbox but it was easily fixed by adding plex.direct to a box and it fixed it. From what I can find the way to change it on the gwn7000 is to go here

 

Click to see full size

 

and add a line to the DHCP options - rebind-domain-ok=/plex.direct/

 

but that just breaks the internet. 

 

Anybody got any suggestions here? I don't even know what DNS rebinding is, so I'm  a little out of my depth.


Create new topic


940 posts

Ultimate Geek


  #2081972 31-Aug-2018 16:42
Send private message

Anybody have any ideas about this? Anyone using Plex and the grandstream gwn7000 router?

 

The plex support page has info about using DNSMASQ, near the bottom of the page - https://support.plex.tv/articles/206225077-how-to-use-secure-server-connections/

 

I can't figure this one out. 


/dev/null
9087 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  #2081973 31-Aug-2018 16:48
Send private message

Plex should direct connect where possible without any configuration on your router.

 

I have not got plex.direct or any special rules set up on my network and yet my parents actually access the Plex server via their site-to-site VPN.

 

Unless if you're meaning the router is blocking DNS Rebinding Attacks as part of its firewall?





 
 
 
 




940 posts

Ultimate Geek


  #2082092 31-Aug-2018 22:04
Send private message

Yes I believe that is what's happening. I had to do a similar thing on the fritzbox when I was using that, for plex to be able to direct connect.


dan

1154 posts

Uber Geek

Lifetime subscriber

  #2082185 1-Sep-2018 07:51
Send private message

if your router has DNS rebinding protection, then no plex will not work 100% correctly, some clients will be connecting via the plex wan interface or even possibly the relay instead of lan,

 

that is not good.

 

 

 

 what is the actual plex problems your having tho

 

 


dan

1154 posts

Uber Geek

Lifetime subscriber

  #2082187 1-Sep-2018 07:57
Send private message

a quick google search seems to indiate you are able to turn this off.

 

 

 

Aug 22, 2018 - GRANDSTREAM NETWORKS. GWN7000 ... If your GWN7000 has firmware version lower than 1.0.2.62 (1.0.2.62 not included), please refer to the beta forum ..... Added option to enable/disable DNS Rebind Attack Protection.




940 posts

Ultimate Geek


  #2082737 2-Sep-2018 13:05
Send private message

I seem to be running on the most recent firmware - 1.0.4.23 but I can see no such option to disable DNS rebind anywhere. My problem is that plex won't direct connect (I think to any device), and I seem to be getting a lot of buffering via the xbox one which I wasn't getting before. I think what I'm looking for is to be able to add this "rebind-domain-ok=/plex.direct/" to DNSMASQ field in the router and have eveything work, but it just seems to disable the internet entirely (i have no idea what's technically doing). Alternatively yes I guess turning off the DNS rebind function would also work, but I can't find a way to do that either. 


dan

1154 posts

Uber Geek

Lifetime subscriber

  #2082755 2-Sep-2018 14:04
Send private message

a quick google search shows that setting should be here to disable it

 

 

 

System Settings→Maintenance→Basic→Rebind Protection.


 
 
 
 




940 posts

Ultimate Geek


  #2082873 2-Sep-2018 19:39
Send private message

They have obviously changed this in subsequent firmware as it no longer appears to be an option. Here's what I see.

 

Click to see full size

 

I haven't yet found the option anywhere else in the settings.

 

I'm puzzled why "rebind-domain-ok=/plex.direct/" in the DNSMASQ box doesn't work though. I don't think I'm doing it wrong.


dan

1154 posts

Uber Geek

Lifetime subscriber

  #2082902 2-Sep-2018 21:19
Send private message

its looks like they have only added the option to disable it in the beta firmware for the next release

 

this one here

 

http://www.grandstream.com/support/firmware/gwn7000-beta-test-firmware

 

 

 

 




940 posts

Ultimate Geek


  #2082909 2-Sep-2018 21:40
Send private message

Ah ok. I'm not too keen to try out a beta, I guess I'll have to wait. 


/dev/null
9087 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  #2082917 2-Sep-2018 22:10
Send private message

CutCutCut:

 

Ah ok. I'm not too keen to try out a beta, I guess I'll have to wait. 

 

You can always go back if it isn't for you.





Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

New Vodafone mobile data plans with unlimited data
Posted 26-Feb-2020 06:55


Vodafone launches innovation initiatives to help businesses use 5G
Posted 26-Feb-2020 05:00


Ultimate Ears HYPERBOOM brings massive sound and extreme bass
Posted 25-Feb-2020 09:00


Withings launches three new devices to help monitor heart health from home
Posted 13-Feb-2020 20:05


Auckland start-up Yourcar matches new car buyers with dealerships
Posted 13-Feb-2020 18:05


School gardens go high tech to teach kids the importance of technology
Posted 13-Feb-2020 11:10


Malwarebytes finds Mac threats outpace Windows for the first time
Posted 13-Feb-2020 08:01


Amazon launches Echo Show 8 in Australia and New Zealand
Posted 8-Feb-2020 20:36


Vodafone New Zealand starts two year partnership with LetsPlay.Live
Posted 28-Jan-2020 11:24


Ring launches indoor-only security camera
Posted 23-Jan-2020 17:26


New report findings will help schools implement the digital technologies curriculum content
Posted 23-Jan-2020 17:25


N4L to upgrade & support wireless internet inside schools
Posted 23-Jan-2020 17:22


Netflix releases 21 Studio Ghibli works
Posted 22-Jan-2020 11:42


Vodafone integrates eSIM into device and wearable roadmap
Posted 17-Jan-2020 09:45


Do you need this camera app? Group investigates privacy implications
Posted 16-Jan-2020 03:30



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.