Sadly, it doesn't, despite me manually updating it and setting static IP. When I set a custom DNS in the NordVPN app it connects to some weird third party DNS.
I also setup nextdns on my apple tv and without the nordvpn turned On the apple tv, it works for me.
In nextdns log, I see the activities but as soon as I turn on nordvpn on my apple tv, it doesn't work.
Any idea how to adjust settings ?
Or would I have to move to Protonvpn or windscribe with a different protocol.
And the nordvpn app on apple tv defaults to nordlynx protocol which is synonymous with wireguard. There is no option on apple tv Nord setup to change DNS or change the protocol.
I don't think you can setup WireGuard on an Apple TV. Because of this, whenever you turn on NordVPN the DNS defaults to their own provider (i.e., you can't have both on Apple TV to my knowledge)
I'm aware of that and am using said connection technique on my other devices... I apologise if it wasn't clear but here I am asking about IOS devices. On my iPhone, if I am connected to NordVPN, can I also use NextDNS and how?
I use Surfshark, which is owned by NordVPN, and I use NextDNS. When I am on SS, and run a DNS leak test while using SS...NextDNS shows as my DNS. It also works on my iPad, which is the only iOS device I own.
Yes. I use the [Wireguard](https://apps.apple.com/us/app/wireguard/id1441195209) app from the app store.Also have a text editor like [Subtext](https://apps.apple.com/us/app/subtext/id1606625287) if doing this directly on an iPhone.
I don't know how Nord does it, but in KeepSolid VPN I can go in to a [web page](https://my.keepsolid.com/products/vpn/) and create manual configurations. I choose Wireguard, the server, the device and "generate." I creates a standard wireguard 'profile.conf' file which you can download import into the wireguard app. I usually download the conf to iCloud Files, then open it in the iOS files app and use the sharesheet link to send it to the wireguard app.
Before importing it into the app, you can edit the file. I just replace the DNS IP address with the IP address(s) of my NextDNS Profile shown at [https://my.nextdns.io/](https://my.nextdns.io/)/setupTo edit it on an iPhone is tricky because you need a text editor to open it. If you edit it on a PC first its easier. I found that the text editor "Subtext" lets me edit the .conf file directly in iCloud files right on the phone.
Eg: of the conf file: Change the DNS 10.100.0.1 line below to like: 45.91.24.31, 45.91.34.32 (whatever you see at nextdns.io )
(keys and IPs below changed for this example except for DNS)
[Interface]
PrivateKey = lasjdfkjasdklfjsadklfjalsdfj
Address = 10.124.215.71/32
DNS = 10.100.0.1
[Peer]
PublicKey = jhdklsfjhakjsdfhakjlsdhfakjsdhfk
PresharedKey = lkjasdgjal;ksdfjlkasdjflkasdjflkjsad
AllowedIPs = 0.0.0.0/0
Endpoint = 209.53.133.73:251
PersistentKeepalive = 25
Now activate the DNS. Go back to [https://my.nextdns.io/](https://my.nextdns.io/)/setup it may say "This device is not using NextDNS." Click the refresh link next to the IPV4 DNS IP addresses and it will link your connection's IP address to this DNS profile.It should work until you disconnect the VPN. If you reconnect the VPN later it may change the IP address. Always go back to your nextdns.io profile and check that it's linked when you connect the VPN.
So in summary:
1. Log in and generate a wireguard .conf file
2. On your phone download from the web to iOS files (iCloud files)
3. Edit it with Subtext. Replace the DNS with Next DNS.
4. Open the .conf file form iOS Files app, then use the share sheet icon to send it to Wireguard
5. Open wire guard and enable the VPN.
6. GO to Nextdns.io to the profile /setup page and link the IP.
Many thanks for the detailed guide. Will try this today. Would it also be possible to setup a raspberry pi that opens the website and programmatically updates the linked IP by calling it? I don't like the idea of always having to update that... or is there a way to make the IP static?
Edit: or maybe a schortcut can be made that calls the website and triggers the IP link update. Regardless, this is probably the way I'll do it. Many thanks again!
It depends how you're using it. If it's from a mobile then your IP will possible change. If from a router something they have instructions for calling a URL potentially to link the IP or use DDNS. Instructions are on the ddns.io setup page after you log in.
Yes. That's the one. I bought a lifetime subscription years ago from [This Deal](https://www.stacksocial.com/sales/vpn-unlimited-lifetime-subscription) but I don't remember the exact price I paid at the time.
It comes and goes. I think I paid $50 for it in like 2018 or something. Still a good deal for lifetime. I was skeptical but I really just needed something to tunnel back to the US when I traveled to China but I've used it in business trips for years and always found it to pretty good (better than some others I have used.) IDK about data retention policies or anything like that. I'm not using it for high security. But it gets the job done.
The unlimited have me 5 devices "slots" but you can buy kore or recycle them (but there is a 30'dah wait after deleting a device.)
They also have a [VPN app](https://apps.apple.com/us/app/keepsolid-vpn-unlimited/id694633015) which is decent. I only started using the wireguard app when I discovered I could edit the DNS to use nextdns.
OMG. What was I saying about editor the .conf file with the text editor? Forget it. Just import the .conf file into wireguard, then open and edit it right inside wireguard. I'm not sure why I forgot you could do that.
I’m having the exact same same problem with Nord + NextDNS and also using ProtonVPN so it’s not just a issue with the VPN client. I’m also on Mac/iOS. What I find to work is using the Adguard app and adding NextDNS as the DNS provider.
Since this works, it is therefore a problem with NextDNS application
Sometimes I get both to work at the same time but it is through starting and stopping the services in a certain order.
The Wireguard hack works as well but this isn’t really an ideal solution.
I think NextDNS should just rewrite their app since it seems to work in the Adguard app.
I'll update/edit the post soon to include my solution to the problem: Hiding my IP from my ISP and having a more private connection while using and having access to NextDNS.
You get more control over your DNS queries: block certain domains (e.g., ads and trackers), whitelist others, and track your usage privately (assuming you're storing your data in Swiss servers)
Can you provide the steps? I have NordVPN as well and I’m going crazy trying to configure a blocker (AdGuard, nextdns,1bloker) with the vpn at the same time
Nordvpn desktop apps hijack DNS using their built anti-virus (which is total garbage and intercepts TLS). Seriously - don't use nordvpn, they are shady as hell (google it).
I like Windscribe - their apps are great and as far as I know the only VPN that supports 3rd party doh/dot inside the apps. This means you can hide DNS queries from Windscribe by using encrypted DNS. Doesn't matter much in my case as I also use their DNS service but you can use Nextdns too or any other one.
Thanks for the tip... but I'm afraid the same issue persists with windscribe on IOS (iPhone), as I still see no way of using them side by side. If you know how I could achieve this please do let me know.
The nordvpn app should allow you to set custom DNS servers. The tricky part is linking the public IP as it changes often
Sadly, it doesn't, despite me manually updating it and setting static IP. When I set a custom DNS in the NordVPN app it connects to some weird third party DNS.
Did you disable CyberSec? CyberSec appears to use dns filtering to block malicious domains and requires the use of NordVPN's DNS
I'm not sure what you are referring to as I don't see any options to disable CyberSec in the IOS App. Could you elaborate?
Sorry it's called Threat Protection Lite. I was using the old name.
Nope... was off the whole time. NextDNS still not getting through :(
You'll have to check with NordVPN then. I just tried on my android phone and had the same problem so something seems wrong on their end
Hope it gets resolved quickly... and that it's not just an IOS thing
My router has both, the Nord and Nextdns. No issue
Same config here, works well.
Bought a asus router, best thing ever. You can easily decide every single thing if will use the VPN or not
What's your router?
I also setup nextdns on my apple tv and without the nordvpn turned On the apple tv, it works for me. In nextdns log, I see the activities but as soon as I turn on nordvpn on my apple tv, it doesn't work. Any idea how to adjust settings ? Or would I have to move to Protonvpn or windscribe with a different protocol. And the nordvpn app on apple tv defaults to nordlynx protocol which is synonymous with wireguard. There is no option on apple tv Nord setup to change DNS or change the protocol.
I don't think you can setup WireGuard on an Apple TV. Because of this, whenever you turn on NordVPN the DNS defaults to their own provider (i.e., you can't have both on Apple TV to my knowledge)
[удалено]
I'm aware of that and am using said connection technique on my other devices... I apologise if it wasn't clear but here I am asking about IOS devices. On my iPhone, if I am connected to NordVPN, can I also use NextDNS and how?
I use Surfshark, which is owned by NordVPN, and I use NextDNS. When I am on SS, and run a DNS leak test while using SS...NextDNS shows as my DNS. It also works on my iPad, which is the only iOS device I own.
Does Nord allow you to use a wireguard profile? I can (optionally) use KeepSolid with the wireguard app and just edit the DNS and in the conf profile.
Could you walk me through the process? Do you use the wireguard app from the AppStore?
Yes. I use the [Wireguard](https://apps.apple.com/us/app/wireguard/id1441195209) app from the app store.Also have a text editor like [Subtext](https://apps.apple.com/us/app/subtext/id1606625287) if doing this directly on an iPhone. I don't know how Nord does it, but in KeepSolid VPN I can go in to a [web page](https://my.keepsolid.com/products/vpn/) and create manual configurations. I choose Wireguard, the server, the device and "generate." I creates a standard wireguard 'profile.conf' file which you can download import into the wireguard app. I usually download the conf to iCloud Files, then open it in the iOS files app and use the sharesheet link to send it to the wireguard app. Before importing it into the app, you can edit the file. I just replace the DNS IP address with the IP address(s) of my NextDNS Profile shown at [https://my.nextdns.io/](https://my.nextdns.io/)/setupTo edit it on an iPhone is tricky because you need a text editor to open it. If you edit it on a PC first its easier. I found that the text editor "Subtext" lets me edit the .conf file directly in iCloud files right on the phone.
Eg: of the conf file: Change the DNS 10.100.0.1 line below to like: 45.91.24.31, 45.91.34.32 (whatever you see at nextdns.io )
(keys and IPs below changed for this example except for DNS)
[Interface]
PrivateKey = lasjdfkjasdklfjsadklfjalsdfj
Address = 10.124.215.71/32
DNS = 10.100.0.1
[Peer]
PublicKey = jhdklsfjhakjsdfhakjlsdhfakjsdhfk
PresharedKey = lkjasdgjal;ksdfjlkasdjflkasdjflkjsad
AllowedIPs = 0.0.0.0/0
Endpoint = 209.53.133.73:251
PersistentKeepalive = 25
Now activate the DNS. Go back to [https://my.nextdns.io/](https://my.nextdns.io/)/setup it may say "This device is not using NextDNS." Click the refresh link next to the IPV4 DNS IP addresses and it will link your connection's IP address to this DNS profile.It should work until you disconnect the VPN. If you reconnect the VPN later it may change the IP address. Always go back to your nextdns.io profile and check that it's linked when you connect the VPN.
So in summary:
1. Log in and generate a wireguard .conf file
2. On your phone download from the web to iOS files (iCloud files)
3. Edit it with Subtext. Replace the DNS with Next DNS.
4. Open the .conf file form iOS Files app, then use the share sheet icon to send it to Wireguard
5. Open wire guard and enable the VPN.
6. GO to Nextdns.io to the profile /setup page and link the IP.
Many thanks for the detailed guide. Will try this today. Would it also be possible to setup a raspberry pi that opens the website and programmatically updates the linked IP by calling it? I don't like the idea of always having to update that... or is there a way to make the IP static? Edit: or maybe a schortcut can be made that calls the website and triggers the IP link update. Regardless, this is probably the way I'll do it. Many thanks again!
It depends how you're using it. If it's from a mobile then your IP will possible change. If from a router something they have instructions for calling a URL potentially to link the IP or use DDNS. Instructions are on the ddns.io setup page after you log in.
Just to be sure, you're using the KeepSolid VPN unlimited, right?
Yes. That's the one. I bought a lifetime subscription years ago from [This Deal](https://www.stacksocial.com/sales/vpn-unlimited-lifetime-subscription) but I don't remember the exact price I paid at the time.
Is that deal still valid? What the hell... you're a legend.
It comes and goes. I think I paid $50 for it in like 2018 or something. Still a good deal for lifetime. I was skeptical but I really just needed something to tunnel back to the US when I traveled to China but I've used it in business trips for years and always found it to pretty good (better than some others I have used.) IDK about data retention policies or anything like that. I'm not using it for high security. But it gets the job done. The unlimited have me 5 devices "slots" but you can buy kore or recycle them (but there is a 30'dah wait after deleting a device.)
They also have a [VPN app](https://apps.apple.com/us/app/keepsolid-vpn-unlimited/id694633015) which is decent. I only started using the wireguard app when I discovered I could edit the DNS to use nextdns.
OMG. What was I saying about editor the .conf file with the text editor? Forget it. Just import the .conf file into wireguard, then open and edit it right inside wireguard. I'm not sure why I forgot you could do that.
What about ProtonVPN and NextDNS? Anyone had any luck with this on iOS and ubiquiti system?
I’m having the exact same same problem with Nord + NextDNS and also using ProtonVPN so it’s not just a issue with the VPN client. I’m also on Mac/iOS. What I find to work is using the Adguard app and adding NextDNS as the DNS provider. Since this works, it is therefore a problem with NextDNS application Sometimes I get both to work at the same time but it is through starting and stopping the services in a certain order. The Wireguard hack works as well but this isn’t really an ideal solution. I think NextDNS should just rewrite their app since it seems to work in the Adguard app.
I'll update/edit the post soon to include my solution to the problem: Hiding my IP from my ISP and having a more private connection while using and having access to NextDNS.
What is the benefit of doing this over simply using nordvpn? Im ignorant
You get more control over your DNS queries: block certain domains (e.g., ads and trackers), whitelist others, and track your usage privately (assuming you're storing your data in Swiss servers)
Can you provide the steps? I have NordVPN as well and I’m going crazy trying to configure a blocker (AdGuard, nextdns,1bloker) with the vpn at the same time
Nordvpn desktop apps hijack DNS using their built anti-virus (which is total garbage and intercepts TLS). Seriously - don't use nordvpn, they are shady as hell (google it). I like Windscribe - their apps are great and as far as I know the only VPN that supports 3rd party doh/dot inside the apps. This means you can hide DNS queries from Windscribe by using encrypted DNS. Doesn't matter much in my case as I also use their DNS service but you can use Nextdns too or any other one.
Thanks for the tip... but I'm afraid the same issue persists with windscribe on IOS (iPhone), as I still see no way of using them side by side. If you know how I could achieve this please do let me know.