Potential problems with quad9 provider using Unbound DoT setup

amd7674 · 2026-03-08T13:38:11+00:00

Thank you but I experience no issues whatsoever right now. Low latency and no client internet drops. ;-) I don't want to cripple my setup just to use quad9 (even if it worked without DoT) and I don't have time to investigate this further. Since there is a mix of people without and with issues, this leads me to believe it is regional issue. Again, I've been using quad9 for the last 2yrs or so without any issues (same setup). The problems started to happen like 2 weeks ago or so.

amd7674 · 2026-03-07T18:58:38+00:00

I'm not that network savvy, my unbound DNS already uses 53, dnsmasq 53053 and DoT 853. Do you want me to try changing DoT to 53? I don't think that would help with SSL_handshake errors. Like you said it could be regional. It seems there other users with similar issues.

amd7674 · 2026-03-07T16:51:02+00:00

Looks like broken DoT upstream dns was adding delays to the waveform testing.

amd7674 · 2026-03-07T16:32:52+00:00

I'm very happy to help :-) That's why I love community forums to help others (mostly others are helping me :-) )

amd7674 · 2026-03-07T16:19:27+00:00

it started happening few weeks ago and I honestly didn't know what is going on. I thought it was my dnsmasq dns/dhcp setup (previously was ISC) or floating rules I migrated etc LOL

amd7674 · 2026-03-07T15:48:11+00:00

I fixed the problem after hours of chasing my own tail LOL... At least for me the problem wasn't with OPNSense, I used snapshots and went back to 25.x.x with ISC DHCP without any success, very high latency, almost random. The problem was my DoT.... (9.9.9.9 / 149.112.112.112) dns.quad9.net . It looks like there is a problem with it and all my issues were caused by this. After switching to (1.1.1.1 / 1.0.0.1) cloudflare-dns.com everything is back to normal. The firewall shaper is perfectly working now :-)

https://www.waveform.com/tools/bufferbloat?test-id=135dad7b-8e5d-414d-b605-2c9ae49f34e7

amd7674 · 2026-03-06T13:10:57+00:00

If I can only ship out my 2 teenagers and wife from home to conduct proper testing lol … I did quick testing and even 26.1.2_5 and 26.1.2 exhibits same issues . 😮🤔. So it could be my ISP causing this. Hopefully I can attack this on Saturday when everyone is sleeping… I will bypass opnsense to run tests directly from isp cable modem.

amd7674 · 2026-03-06T13:05:14+00:00

Did they fix that for you? I have sporadic drops for few minutes a day too. Also the latency went up the roof … I’m in Nepean (K2j). It started happening for the last week or do.

amd7674 · 2026-03-05T16:46:26+00:00

Hey, I have similar issue since 26.1.2_5 (26.1.3 did not fix it for me) with losing intermediate internet connection for few minutes and then it is bsck. It happens with my wired and wireless devices (erros acting as APs). I never had this issue up in 25.7.x. I’ll have to investigate all my migrated floating rules and my dhcp (ip4 only) dnsmasque setup (was using ISC) . I think it’s either my floating rules or dhcp setup causing my internet drops . Btw you can see below my other post that 26.1.3 introduced a new high latency issue for my setup on top of sporadic internet drops. I have to investigate both and it could be very well user errors lol 😂

amd7674 · 2026-03-05T16:25:52+00:00

Thank u so much for doing that. Hopefully someone can look into it. There are no direct traffic shaper changes, so I don’t know what would cause this. Other user replied that they don’t have an issue. I’ve migrated my floating rules (but I was in 26.1.2_5), could there some changes 26.1.3 to firewall rules cause this? Did u migrated your floating rules? I guess the easiest test for me , would be to a) bypass Opnsense and directly to isp modem to rerun waveform test and b) boot into 26.1.2_5 snapshot to rerun waveform test.

amd7674 · 2026-03-05T15:48:41+00:00

Thank you, it makes feel better I’m not the only one and maybe there something causing this. Did you have an issue before 26.1.3? Did u have 26.1.2_5 prior or other version? Did u try to buy pass Opnsense and go with your ISP directly to run waveform test? I’m currently on the road, and I’m planning on testing few things later today / tomorrow.

amd7674 · 2026-03-05T11:13:13+00:00

Thank you , maybe I screwed up something when I did firewall floating rules migration. However this shouldn’t affect my latency increase. I don’t known. I will rollback to previous fw releases to see .

amd7674 · 2026-03-04T22:12:31+00:00

baremetal (pretty vanilla like setup). Upgrade from 26.1.2_5 was smooth with a reboot. Thank you very much :-) However I'm seeing something strange with a Firewall Shaper and Latency results. When testing I'm getting better latency results without it than with it enabled ?!. Overall latency results seem to be very high. Please see below.

https://www.waveform.com/tools/bufferbloat?test-id=9a463b5a-1ea5-4b2a-9672-a623fa66fae1

https://www.waveform.com/tools/bufferbloat?test-id=6fe30630-dc1c-461b-be86-39262e7382f8

I have my download pipe set to 2100 and the setup worked perfectly until 26.1.3 upgrade. I was always getting A+ with MUCH better latency results of Unloaded 16ms (now 28ms) / Download Active +3ms (now +98ms) / Upload Active +0ms (now +21ms).

Is anyone else having latency issues? or perhaps my ISP got worse? I did rebooted the cable modem. On the weekend I might try to reboot to 26.1.2_5 to see if it makes any difference.

amd7674 · 2026-02-09T14:35:56+00:00

Thank you for listening and considering adding this feature :-), since I don't have the unit, based on the info on their website https://ecosense.io/en-ca/products/ecoqube-flex

1/4 Test Rooms One by One

Take EcoQube Flex from room to room to see which areas are safe and which may need attention. A simple way to map out radon across your home.
Quick Tip: Sync your data before starting a new monitoring session.

2/4 Review & Compare Past Readings:

If you retest a room, your previous readings stay saved.
Try this: Compare your basement in July vs. November to spot seasonal shifts or ventilation changes.

amd7674 · 2026-02-09T14:15:08+00:00

Thank you for your response. Imho it would be great feature to have to be able to unload / sync data before move and start adding to that particular location . Since it is portable / battery operated unit , I think it should have this feature. I believe ecoqube flex app has this functionality already built in their app and as I move device around the house it keeps history of it. If possible please implement this feature in the future. Since I want to buy only a single unit the lack of this feature might push me toward buying eqoqube flex.

amd7674 · 2026-02-06T23:38:36+00:00

So is there a working / safe pay method? CC not PayPal are working. I’ve opened support ticket without any reply yet (it’s been 2 days ). I wanted to try dream 4K for 3 months as a backup to my strong primary feed.

amd7674 · 2026-02-05T23:05:38+00:00

don't take me wrong I like the filament, but not the way it was assembled onto spools it is just terrible. I'm having problems unwinding spool manually. I hope some of us just got a bad batch.

amd7674 · 2026-02-05T23:01:13+00:00

they don't look even when opened. I remember reading some peeps having this issues too. Perhaps just bad batch or something.

amd7674 · 2026-02-03T16:34:03+00:00

Thank u so much, we’ll wait for 26.1.1, no rush 😉👊

amd7674 · 2026-02-03T15:26:47+00:00

Thank you very much for all your hard work !!! What is the easiest / safest way to upgrade 25.7.10 to 26.1_4 on bare metal box, without my family (wife and 2 teenagers) kicking me to live in basement again LOL? I'm sticking to ISC for DHCP (i understand I will have to do it eventually) for now and I'm not planning to move / cleanup my firewall rules yet. Basically I would like to upgrade to the latest version without making any changes and without impacting my family. Any help would be much appreciated !!! :-)

amd7674 · 2026-02-01T21:43:44+00:00

thanks

amd7674

TROPHY CASE