cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Prevent Edge from this local DNS resolution if the request is supposed to go to proxy server

cedricexpert
Copper Contributor

‎Jun 18 2021 05:36 AM

‎Jun 18 2021 05:36 AM

Prevent Edge from this local DNS resolution if the request is supposed to go to proxy server

Edge is configured to use system proxy Exlicit. Both internet and intranet access work perfectly. Internet via dedicated proxy server and intranet directly "exclusion". However every time the internet site is loaded, Edge performs local DNS resolution which fails as our local DNS is not able to resolve internet sites. Then the request goes to proxy server and the site loads correctly.

 

Version of our Edge - Version 91.0.864.37 (Official build) (64-bit);

 

The question is whether it is possible to prevent Edge from this local DNS resolution if the request is supposed to go to proxy server.

 

Thank you very much

6,026 Views
0 Likes
3 Replies
Reply
3 Replies
Kelly_Y

‎Jun 23 2021 03:39 PM

‎Jun 23 2021 03:39 PM

Re: Prevent Edge from this local DNS resolution if the request is supposed to go to proxy server

@cedricexpert Hello!  Have you checked out the Proxy settings Policy?  https://docs.microsoft.com/en-us/deployedge/microsoft-edge-policies#proxy-settings  Do you think that will help your scenario? 

 

-Kelly

0 Likes
Reply
cedricexpert

‎Jun 27 2021 08:37 AM

‎Jun 27 2021 08:37 AM

Re: Prevent Edge from this local DNS resolution if the request is supposed to go to proxy server

@Kelly_Y  Hello,

yes absolutely I have applied the proxy settings indicated in your documentation. Despite this, Microsoft EDGE first performs DNS queries before contacting the proxy.


can you tell me how to avoid this?

 

Cedric

0 Likes
Reply
Eric_Lawrence

‎Jun 30 2021 04:53 PM - edited ‎Sep 24 2021 09:11 PM

‎Jun 30 2021 04:53 PM - edited ‎Sep 24 2021 09:11 PM

Re: Prevent Edge from this local DNS resolution if the request is supposed to go to proxy server

Edge should not be performing a DNS resolution in a scenario where the browser is configured to use a proxy server for the target site. The one exception is if the target site presents a WWW-Authenticate: Negotiate auth challenge, in which case the client may perform a DNS lookup on the target, seeking the CNAME to generate the Kerberos SPN. That CNAME lookup can be disabled using the policy disableauthnegotiatecnamelookup.

 

If that doesn't explain your symptoms, please follow these instructions to get a network capture: https://textslashplain.com/2020/01/17/capture-network-logs-from-edge-and-chrome/#:~:text=Appendix%20... and then send it to me (ericlaw@microsoft)

1 Like
Reply