Some devices refuse to to operate if they can't make DNS queries.

beAbU · 2025-11-09T22:15:44 1762726544

Such devices should be retuned for a full refund. Vote with your wallet.

margalabargala · 2025-11-10T00:29:17 1762734557

My devices that do this were bought off aliexpress for about a quarter the price of a reputable brand. They do function and I purchased them expecting I would have to do some finagleing to get them to work and not phone home.

the8472 · 2025-11-09T17:44:40 1762710280

Then they can exfiltrate data over DNS.

margalabargala · 2025-11-09T19:01:19 1762714879

I mean, only if the DNS server is one run by the company in question.

I own nonzero such devices that hit 8.8.8.8 as an internet access sanity check so I have to keep just that IP allowed for them and block all other traffic.

kaoD · 2025-11-09T19:16:31 1762715791

DNS is a hierarchical protocol. You can exfiltrate data as long as the DNS server is resolving recursively.

margalabargala · 2025-11-09T21:39:10 1762724350

Good to know. I didn't know that.

For my devices in question I can see the size and frequency of the requests in OpenWRT and doubt it's actually doing so.

delaminator · 2025-11-09T17:49:30 1762710570

Then give it a DNS server to look up.

margalabargala · 2025-11-09T18:59:42 1762714782

Yes exactly.

CamperBob2 · 2025-11-09T18:06:20 1762711580

I mean, at some point, victim-blaming does sound like the correct response here.

If the answer to your question involved giving money to Samsung, then you asked the wrong question, and you need to do better next time.

margalabargala · 2025-11-09T18:59:34 1762714774

All I meant was that sometimes if you fully block a device it refuses to work, and you may need to selectively unblock just 8.8.8.8 for that device.

Obviously buying such a device is bad, but sometimes you get one for free or close to it and it's worth the hassle to not pay hundreds for a better one.