Live Patches Disabled AdGuard?

Rhizome · 13 October 2021 11:34

Adguard Home stopped blocking ads after installation of several live patches about a week ago. A few days ago I noticed that DNS queries were half of the normal. Today after checking the Dashboard, there are zero DNS enquiries, Clients, etc (see screenshot.)
https://1drv.ms/u/s!AnJqbLp2z67ygetl4nI00TTh7wJzng?e=BEYZUP
What’s the best way to get AdGuard working again? I don’t recall the patch names, just the numbers (1-4) so I’m guessing I need to walk through the entire configuration?

Joulinar · 13 October 2021 12:09

Our live patches don’t have any influence in a running application. We correct simple code blocks on our own DietPi scripts.

If AGH is not working, it’s an issue on AGH themselves. As AGH is a single executable, you could simply reinstall it. If there are no queries, your clients most probably don’t use AGH anymore. Have a look to your clients what DNS Server they are using.

Rhizome · 15 October 2021 01:16

Somehow the devices are using the 9.9.9.9 DNS settings of the router.
If I reinstall, do I need to backup all my AGH settings for reuse?

Joulinar · 15 October 2021 05:34

Why do you like to reinstall? You need to check where your systems get these data from? Do you have a 2nd DHCP server active? Like the router? Or are you distributing a primary and a secondary DNS via your DHCP server settings?

Rhizome · 23 October 2021 13:40

Except for my android phone, which is using the DNS server 8.8.8.8, all other device servers are 9.9.9.9 /149.112.112.112 which is the static primary/ secondary DNS servers on my modem/router. I suspect that rebooting my router caused things to default back to the router, but how do I get AGH functioning again?

Joulinar · 23 October 2021 13:43

Check if your router has activated the DHCP server. If yes, disable it and activate the one on AGH.

Rhizome · 23 October 2021 13:55

Router DHCP server was/ is already disabled. AGH DHCP server was/is enabled. I then tried disabling and re-enabling it. Got the msg “AGH could not determine if there is another active DHCP server on the network.” The AGH server is running.

Joulinar · 23 October 2021 14:50

If you have a Windows box, you could run ipconfig -all to check what the DHCP server is who has assigned IP address to your client.

Rhizome · 23 October 2021 15:14

DHCP server 192.168.1.100, the address of the dietpi with AGH.

Joulinar · 23 October 2021 15:27

And the assignment DNS server is 9.9.9.9 or does it probably assign 2 DNS server maybe?

Rhizome · 23 October 2021 15:49

From Windows it lists only DNS server 9.9.9.9.
In the AdGuardHome.yaml file it lists both 9.9.9.9 & 149.112.112.112.

Joulinar · 23 October 2021 15:53

The 2 are the DNS server AGH is using. Could you share the full file?

Rhizome · 23 October 2021 21:12

Here it is minus the password:

bind_host: 0.0.0.0
bind_port: 8083
beta_bind_port: 0
users:
- name: admin
  password: xxxx
auth_attempts: 5
block_auth_min: 15
http_proxy: ""
language: ""
rlimit_nofile: 0
debug_pprof: false
web_session_ttl: 720
dns:
  bind_hosts:
  - 0.0.0.0
  port: 53
  statistics_interval: 7
  querylog_enabled: true
  querylog_file_enabled: true
  querylog_interval: 7
  querylog_size_memory: 1000
  anonymize_client_ip: false
  protection_enabled: true
  blocking_mode: default
  blocking_ipv4: ""
  blocking_ipv6: ""
  blocked_response_ttl: 10
  parental_block_host: family-block.dns.adguard.com
  safebrowsing_block_host: standard-block.dns.adguard.com
  ratelimit: 20
  ratelimit_whitelist: []
  refuse_any: true
  upstream_dns:
  - https://dns10.quad9.net/dns-query
  upstream_dns_file: /mnt/dietpi_userdata/adguardhome/dietpi-unbound.conf
  bootstrap_dns:
  - 9.9.9.10
  - 149.112.112.10
  - 2620:fe::10
  - 2620:fe::fe:10
  all_servers: false
  fastest_addr: false
  allowed_clients: []
  disallowed_clients: []
  blocked_hosts:
  - version.bind
  - id.server
  - hostname.bind
  cache_size: 4194304
  cache_ttl_min: 0
  cache_ttl_max: 0
  bogus_nxdomain: []
  aaaa_disabled: false
  enable_dnssec: false
  edns_client_subnet: false
  max_goroutines: 300
  ipset: []
  filtering_enabled: true
  filters_update_interval: 24
  parental_enabled: true
  safesearch_enabled: false
  safebrowsing_enabled: true
  safebrowsing_cache_size: 1048576
  safesearch_cache_size: 1048576
  parental_cache_size: 1048576
  cache_time: 30
  rewrites: []
  blocked_services: []
  local_domain_name: lan
  resolve_clients: true
  local_ptr_upstreams: []
tls:
  enabled: false
  server_name: ""
  force_https: false
  port_https: 443
  port_dns_over_tls: 853
  port_dns_over_quic: 784
  port_dnscrypt: 0
  dnscrypt_config_file: ""
  allow_unencrypted_doh: false
  strict_sni_check: false
  certificate_chain: ""
  private_key: ""
  certificate_path: ""
  private_key_path: ""
filters:
- enabled: true
  url: https://adguardteam.github.io/AdGuardSDNSFilter/Filters/filter.txt
  name: AdGuard DNS filter
  id: 1
- enabled: true
  url: https://adaway.org/hosts.txt
  name: AdAway Default Blocklist
  id: 1625143630
- enabled: true
  url: https://someonewhocares.org/hosts/zero/hosts
  name: Dan Pollock's List
  id: 1625888030
- enabled: true
  url: https://raw.githubusercontent.com/DandelionSprout/adfilt/master/GameConsoleAdblockList.txt
  name: Game Console Adblock List
  id: 1625888031
- enabled: true
  url: https://raw.githubusercontent.com/Spam404/lists/master/main-blacklist.txt
  name: Spam404
  id: 1625888032
- enabled: true
  url: https://raw.githubusercontent.com/mitchellkrogza/The-Big-List-of-Hacked-Malware-Web-Sites/master/hosts
  name: The Big List of Hacked Malware Web Sites
  id: 1625888033
- enabled: true
  url: https://raw.githubusercontent.com/hoshsadiq/adblock-nocoin-list/master/hosts.txt
  name: NoCoin Filter List
  id: 1625888034
- enabled: true
  url: https://pgl.yoyo.org/adservers/serverlist.php?hostformat=adblockplus&showintro=1&mimetype=plaintext
  name: Peter Lowe's List
  id: 1625888035
- enabled: true
  url: https://raw.githubusercontent.com/crazy-max/WindowsSpyBlocker/master/data/hosts/spy.txt
  name: WindowsSpyBlocker - Hosts spy rules
  id: 1625888036
- enabled: true
  url: https://raw.githubusercontent.com/durablenapkin/scamblocklist/master/adguard.txt
  name: Scam Blocklist by DurableNapkin
  id: 1625888037
- enabled: true
  url: https://curben.gitlab.io/malware-filter/urlhaus-filter-agh-online.txt
  name: Online Malicious URL Blocklist
  id: 1625888038
- enabled: true
  url: https://raw.githubusercontent.com/AdguardTeam/FiltersRegistry/master/filters/filter_11_Mobile/filter.txt
  name: Mobile Ads Filter
  id: 1625888039
- enabled: true
  url: https://paulgb.github.io/BarbBlock/blacklists/hosts-file.txt
  name: BarbBlock
  id: 1631359396
- enabled: true
  url: https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/SmartTV-AGH.txt
  name: Perflyst and Dandelion Sprout's Smart-TV Blocklist
  id: 1632579493
whitelist_filters: []
user_rules:
- ""
dhcp:
  enabled: true
  interface_name: eth0
  dhcpv4:
    gateway_ip: 192.168.1.1
    subnet_mask: 255.255.255.0
    range_start: 192.168.1.110
    range_end: 192.168.1.254
    lease_duration: 86400
    icmp_timeout_msec: 1000
    options:
    - 6 ips 9.9.9.9
    - 149.112.112.112
  dhcpv6:
    range_start: ""
    lease_duration: 86400
    ra_slaac_only: false
    ra_allow_slaac: false
log_compress: false
log_localtime: false
log_max_backups: 0
log_max_size: 100
log_max_age: 3
log_file: ""
verbose: false
schema_version: 10

Joulinar · 23 October 2021 21:17

I removed all your client information as they are privat I guess

Basically you have setup AGH DHCP to distribute Quad9 DNS server to your clients

dhcp:
enabled: true
interface_name: eth0
dhcpv4:
gateway_ip: 192.168.1.1
subnet_mask: 255.255.255.0
range_start: 192.168.1.110
range_end: 192.168.1.254
lease_duration: 86400
icmp_timeout_msec: 1000
options:
- 6 ips 9.9.9.9
- 149.112.112.112

I guess a leftover from your attempt to setup a secondary DNS server.

Rhizome · 23 October 2021 23:14

AGH is up and running after deleting the “option” DNS addresses and rebooting clients!
Thx for this and also for deleting the client info Joulinar.