Hi,
I have a strange problem on my network, I think I have narrowed down to the the DNS cache in my Mikrotik Hex S router.
3 of my devices keeps losing connection. Unfortunately also 3 very closed IoT devices
A Yale/August Connect bluetoooth gateway, a Netatmo weather station and a Grohe Blue Home water tap.
The strange thing is that as soon as I flush the cache in the router, all 3 reconnects almost instantly to the internet.
I have tried to look at the cached records, but can't really seem to find any signs of strange things.
I can't really find any common denominator for all tree. The August gateway and Grohe seems to be using AWS:
rbs-sticky.august.com: rbs-sticky.august.com is an alias for rbs-sticky-prod-aws.august.com.
rbs-sticky-prod-aws.august.com is an alias for rbs-prod-aws.august.com.
rbs-prod-aws.august.com is an alias for ireland-prod-rbs-legacy.august.com.
ireland-prod-rbs-legacy.august.com is an alias for a3d8823bcc4694a5a8064c19ae4437d8-ea1fa960054d012f.elb.eu-west-1.amazonaws.com.
a3d8823bcc4694a5a8064c19ae4437d8-ea1fa960054d012f.elb.eu-west-1.amazonaws.com has address 108.128.67.33
a3d8823bcc4694a5a8064c19ae4437d8-ea1fa960054d012f.elb.eu-west-1.amazonaws.com has address 52.210.203.100
a3d8823bcc4694a5a8064c19ae4437d8-ea1fa960054d012f.elb.eu-west-1.amazonaws.com has address 99.81.169.172
idp-apigw.cloud.grohe.com: idp-apigw.cloud.grohe.com is an alias for grohe-idp-prod-apigwlb-01-665378892.eu-central-1.elb.amazonaws.com.
grohe-idp-prod-apigwlb-01-665378892.eu-central-1.elb.amazonaws.com has address 3.124.61.13
grohe-idp-prod-apigwlb-01-665378892.eu-central-1.elb.amazonaws.com has address 3.124.127.18
grohe-idp-prod-apigwlb-01-665378892.eu-central-1.elb.amazonaws.com has address 3.74.7.173
grohe-idp-prod-apigwlb-01-665378892.eu-central-1.elb.amazonaws.com has address 35.157.44.100
But Netatmo seems to be using Azure:
api.netatmo.com: api.netatmo.com is an alias for front-azure.netatmo.net.
front-azure.netatmo.net has address 51.145.143.28
Anyone have any hints?
Wish I could provide more info, but all tree is completely closed, and I have no problems with any of the other stuff on my network.
My DNS config:
[admin@MikroTik] > ip/dns/print
servers: 1.1.1.1,8.8.8.8,9.9.9.9
dynamic-servers:
use-doh-server:
verify-doh-cert: no
allow-remote-requests: yes
max-udp-packet-size: 4096
query-server-timeout: 2s
query-total-timeout: 10s
max-concurrent-queries: 100
max-concurrent-tcp-sessions: 20
cache-size: 2048KiB
cache-max-ttl: 1h
cache-used: 425KiB