If i install the new Coreupdate with the DNS Firewall i face the Problem that the Push Mesages from Signal or Banking Apps or other Systems did not work. Any Ideas?
See
Logs → System Logs → Section : “DNS : Unbound”
You will find the blocked domains
If they need to be authorized, declare them in
I’m experiencing the same problem. None of the Android devices connected to my BLUE network, are able to receive push notifications since the upgrade to CU 201.
Signal, Beeper, WhatsApp, Home assistant, microsoft Teams, Outlook, even Google Messages (former SMS app that now also supports IM) all fail to send push messages.
I do still seem to get notifications from K9-Mail.
Also when I open one of those app, I suddenly get all delayed push messages for that app.
And as soon as I leave my house out of the wifi range, I suddenly get all delayed push messages for all apps.
I have disabled DNS firewall and rebooted to make sure it was correctly reset. But that didn’t help
I have also disabled IPS and rebooted, but also that didn’t help
I still don’t get push notifications anymore while on BLUE, even without DNS FW and IPS.
When I’m not on my own wifi, my phone automatically switches to Wireguard VPN to connect back to my IPFire. Still I do get all push notifications, even when on VPN, when I leave the home wifi and keep receiving new ones in a normal way..
So I currently have no idea what is causing this.
We need to understand what the setup differences are because I am not experiencing that problem.
With my CU201 I am still getting notifications from WhatsApp, Messenger, Signal and Google Messages. These are all on my Android phone which is connected via wireless through a WAP and onto my green network.
I have DNS Firewall with three categories enabled, IPS with Emerging Threats with 14 categories selected and IP Blocklist with 6 lists selected.
I can share the categories etc that I have selected if it would be useful.
and just now I successfully got a notification from my bank app so that is also working with CU201 on my system.
Same problem here. IPFire CU 201:
- DNS Firewall enabled with 6 blocking lists activated. No networks selected. Therefore RED should be covered.
- URL Filter disabled after 10 years.
- Squid Proxy enabled in non-transparent mode (HTTPS covered) just like the last 10 years.
- No other changes.
DNS filtering si working well, with the occasional domain getting blocked although it’s not in the list (scene7.com) or only in non-activated list (Gaming: steampowered.com, steamcommunity.com) and also doesn’t show up in the DNS: Unbound log. I have whitelisted those.
With my devices in the BLUE network I do not get any notifications from Threema or Microsoft Authenticator (company wants me to use this). Only when I open those apps. Not even having them sitting in the background does me get notifications.
O.k., I deselected each Filterlist, deleted Blacklist and Whitelist entries, enabled URL-Filter again and rebooted IPFire. That should bring me to my previous environment of IPFire CU 200. But no joy. The push messages to my smartphone in BLUE are still blocked by something. Only when I use mobile data I get them immediately. Something is fishy.
I tried disabling all filtering/blocking: DNS FW, IPS, IP blocklist and Location blocklist. But still the problem remains..
Remarkable is also that when I’m on mobile data, but with wireguard connected to IPFire, configured to route all traffic through the tunnel, I do get the notifications. But when I’m on BLUE without tunnel, I don’t get them.
I also noticed that Google Family Safety settings which I set are no longer applied immediately to the phones of my children when they are connected to BLUE. When they switch to mobile data, the settings are applied. So I presume this also uses the same or a similar push technique as notifications do.
I will try to connect my mobile to GREEN, if I find some time and a spare WAP.
That’s exactly the behavior I observed as well. It caused me so much trouble with my family that I had to roll back to the previous release. I couldn’t find any other solution. Neither the push notifications were coming through nor were the Family Link settings syncing.
Until these issues are resolved, there’s no way I can update to the next release 
I just noticed that bank verification notifications are no longer going through.
I don’t use them often, but they worked before CU200 on my mobile phone using Wi-Fi on the Green network.
I had to switch my phone to 5G to get the notification and complete the payment.
Message and WhatsApp notifications are working fine.
I don’t use DNS blocking, only URL Filter, but there’s nothing in logs.
What could be blocking them?
I’ll try running a tcpdump the next time I have a purchase to confirm.
I have filed a bug report about this. If you have more information from your perspective please add.
For example notifications for new messages via Threema Messenger don’t work for me. I don’t use Whatsapp. Notifications also get blocked without using DNS Firewall at all. Something has been changed internally.