Pi-Hole - lots of NXDOMAIN queries from a Chromebook overnight

Forums › LAN (ethernet/Wifi/routers/Bluetooth) › Pi-Hole - lots of NXDOMAIN queries from a Chromebook overnight

josephhinvest

1550 posts

Uber Geek
+1 received by user: 322

ID Verified

Trusted

#272582 3-Jul-2020 10:44

I've had a Pi-Hole set up for a few weeks for general network wide ad and tracker blocking. (Good fun, seems to work as advertised).
Noticed a lot of overnight activity from a Chromebook, hundreds of NXDOMAIN queries that look like a random string with my .mydomain i.e. abcdefghi.hinvest
I know just enough networking stuff to be dangerous, can anyone explain what these queries are? I guess the Chromebook was left awake overnight?
16,000+ queries between 0000 and ~0600hrs.

Cheers,
Joseph

olivernz

512 posts

Ultimate Geek
+1 received by user: 177

ID Verified

Trusted

Lifetime subscriber

#2516675 3-Jul-2020 10:57

https://isc.sans.edu/diary/Google+Chrome+and+weird+DNS+requests/10312/

josephhinvest

1550 posts

Uber Geek
+1 received by user: 322

ID Verified

Trusted

#2516684 3-Jul-2020 11:14

olivernz:
https://isc.sans.edu/diary/Google+Chrome+and+weird+DNS+requests/10312/

Ok ta for that. So Chrome is attempting to prefetch domains and just goes through random strings? I guess that makes sense, but is it trying to find domains on my local network? I don’t really get it!

Cheers,
Joseph