Skip to content

Nameservers only work if "Match Domains" is specified #5569

New issue
New issue
Open
Open
Nameservers only work if "Match Domains" is specified#5569
Labels
triage-needed
@mattiasegly

Description

@mattiasegly
mattiasegly
opened on Mar 10, 2026

Describe the problem
Nameservers only recieve DNS requests if "Match Domains" is specified in cloud-hosted NetBird

To Reproduce
Local setup:
-DNS server 1: NetBird rootless-latest client + Blocky DNS server in sidecar/pod configuration
-DNS server 2: NetBird rootless-latest client with Blocky as "Resource" in "Networks"

Cloud setup:
-NetBird DNS Domain: netbird.cloud (peer resolution works)
-NetBird DNS Zone: netbird.internal (peer resolution works)
-Custom Search Domain: netbird.lan (DNS queries observed, resolution works)
-Primary Nameserver: "Match Domains: ALL" (no queries observed, resolution doesn't work)
-TLD Nameserver: "Match Domains: com" (DNS queries observed, resolution works)
-TLD Nameserver: "Match Domains: net" (DNS queries observed, resolution works)

Client setup:
-iPhone iOS 26.3.1, NetBird 0.1.1 (matched domains work, resolved by DNS servers. Other TLDs fail to resolve)
-Android 16, NetBird 0.3.2/0.64.1 (matched domains work, resolved by DNS servers. Other TLDs bypassed, no queries observed)

Tested different combinations to rule out issues with network, local setup, and clients.
Each DNS server recieve queries and resolve for the TLDs that have been specified in the management portal, regardless of client. See image.
I also see traffic in the server firewall destined for 1.1.1.1:53, which I haven’t specified. Suspect this is from the clients not using the default nameservers.

.com & .net domains work
.net, .dev, .io does not

Expected behavior
Domain resolution working for all TLDs with Primary Nameserver: "Match Domains: ALL"

Are you using NetBird Cloud?
Yes.

NetBird version
-Podman 5.8.0, NetBird rootless-latest (0.66.3)
-iPhone iOS 26.3.1, NetBird 0.1.1
-Android 16, NetBird 0.3.2/0.64.1

Is any other VPN software installed?
No.

Screenshots
Attached.

Have you tried these troubleshooting steps?

  • [ Y ] Reviewed client troubleshooting (if applicable)
  • [ Y ] Checked for newer NetBird versions
  • [ Y ] Searched for similar issues on GitHub (including closed ones)
  • [ Y ] Restarted the NetBird client
  • [ N/A ] Disabled other VPN software
  • [ Y ] Checked firewall settings
Image

Metadata

Metadata

Assignees

No one assigned

    Labels

    triage-needed

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions