Problem with PayPal and two factor authentication

GozyllaR · December 8, 2021, 6:02pm

Hello all,

I have the following problem:

When I want to log in to PayPal.com I am first asked for my email address and password. If I enter everything correctly I am redirected to the 2-factor authentication where I have to enter a 6-digit one time password. Unfortunately this page loads infinitely long.
The query log unfortunately only says "undefined" as the domain, so I can't really do anything with it.

2021-12-08 19:01:48	A	undefined	MacBook-Air.fritz.box	OK, sent to fritz.box#53	N/A	 Blacklist
2021-12-08 19:01:48	AAAA	undefined	MacBook-Air.fritz.box	OK, sent to fritz.box#53	N/A	 Blacklist
2021-12-08 19:01:48	HTTPS	undefined	MacBook-Air.fritz.box	OK, sent to fritz.box#53	N/A	 Blacklist

I found out that this problem is only present in the combination Safari/Pi-hole.
With Chrome/Pi-hole everything works. With Safari without Pi-Hole it also works fine. Means standing alone neither Safari nor the Pi-Hole is problematic.

I hope you can help me with this.

jfb · December 8, 2021, 6:17pm

Please post a few of these queries, forwards and replies from the dnsmasq log at /var/log/pihole.log

GozyllaR · December 8, 2021, 7:17pm

The log for Safari:

Dec  8 19:15:56 dnsmasq[6039]: query[HTTPS] undefined from 192.168.188.104
Dec  8 19:15:56 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:15:56 dnsmasq[6039]: query[AAAA] undefined from 192.168.188.104
Dec  8 19:15:56 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:15:56 dnsmasq[6039]: query[A] undefined from 192.168.188.104
Dec  8 19:15:56 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:15:57 dnsmasq[6039]: query[AAAA] undefined from 192.168.188.104
Dec  8 19:15:57 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:15:57 dnsmasq[6039]: query[A] undefined from 192.168.188.104
Dec  8 19:15:57 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:15:57 dnsmasq[6039]: query[HTTPS] undefined from 192.168.188.104
Dec  8 19:15:57 dnsmasq[6039]: forwarded undefined to 192.168.188.1

And here is the log for Chrome:

Dec  8 19:20:39 dnsmasq[6039]: query[A] undefined.fritz.box from 192.168.188.104
Dec  8 19:20:39 dnsmasq[6039]: forwarded undefined.fritz.box to 192.168.188.1
Dec  8 19:20:39 dnsmasq[6039]: query[AAAA] undefined.fritz.box from 192.168.188.104
Dec  8 19:20:39 dnsmasq[6039]: forwarded undefined.fritz.box to 192.168.188.1
Dec  8 19:20:39 dnsmasq[6039]: reply undefined.fritz.box is NXDOMAIN
Dec  8 19:20:39 dnsmasq[6039]: reply undefined.fritz.box is NXDOMAIN
Dec  8 19:20:39 dnsmasq[6039]: query[A] undefined.fritz.box from 192.168.188.104
Dec  8 19:20:39 dnsmasq[6039]: cached undefined.fritz.box is NXDOMAIN
Dec  8 19:20:39 dnsmasq[6039]: query[AAAA] undefined.fritz.box from 192.168.188.104
Dec  8 19:20:39 dnsmasq[6039]: cached undefined.fritz.box is NXDOMAIN
Dec  8 19:20:39 dnsmasq[6039]: query[A] undefined from 192.168.188.104
Dec  8 19:20:39 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:20:39 dnsmasq[6039]: query[AAAA] undefined from 192.168.188.104
Dec  8 19:20:39 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:20:40 dnsmasq[6039]: query[A] undefined from 192.168.188.104
Dec  8 19:20:40 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:20:40 dnsmasq[6039]: query[AAAA] undefined from 192.168.188.104
Dec  8 19:20:40 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:20:45 dnsmasq[6039]: query[A] undefined.fritz.box from 192.168.188.104
Dec  8 19:20:45 dnsmasq[6039]: cached undefined.fritz.box is NXDOMAIN
Dec  8 19:20:45 dnsmasq[6039]: query[AAAA] undefined.fritz.box from 192.168.188.104
Dec  8 19:20:45 dnsmasq[6039]: cached undefined.fritz.box is NXDOMAIN
Dec  8 19:20:45 dnsmasq[6039]: query[A] undefined from 192.168.188.104
Dec  8 19:20:46 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:20:46 dnsmasq[6039]: query[AAAA] undefined from 192.168.188.104
Dec  8 19:20:46 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:20:50 dnsmasq[6039]: query[A] undefined from 192.168.188.104
Dec  8 19:20:50 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:20:50 dnsmasq[6039]: query[AAAA] undefined from 192.168.188.104
Dec  8 19:20:50 dnsmasq[6039]: forwarded undefined to 192.168.188.1
Dec  8 19:20:50 dnsmasq[6039]: query[A] undefined.fritz.box from 192.168.188.104
Dec  8 19:20:50 dnsmasq[6039]: forwarded undefined.fritz.box to 192.168.188.1
Dec  8 19:20:50 dnsmasq[6039]: query[AAAA] undefined.fritz.box from 192.168.188.104
Dec  8 19:20:50 dnsmasq[6039]: forwarded undefined.fritz.box to 192.168.188.1
Dec  8 19:20:50 dnsmasq[6039]: reply undefined.fritz.box is NXDOMAIN
Dec  8 19:20:50 dnsmasq[6039]: reply undefined.fritz.box is NXDOMAIN

jfb · December 9, 2021, 4:41am

A client is making repeated requests for the undefined domain. Pi-hole handles that request as expected.

GozyllaR · December 9, 2021, 7:02am

How is it possible that in Safari the website does not load and in Chrome it does?

gene · December 22, 2021, 11:58pm

I had this problem too. Was able to solve it by:

Enabling Use Conditional Forwarding and setting a local domain of lan
Enabling Never forward non-FQDN A and AAAA queries
Blocking undefined.lan

Yeah, it's a mess.

GozyllaR · January 10, 2022, 8:17pm

Hi, thank you very much.
Since I'm already using conditional forwarding I just enabled "Never forward non-FQDN..." and everything works again as expected.

system · January 31, 2022, 8:18pm

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.