Home Network Community > Wi-Fi Routers > BE550 IPv6 DNS Leak: ISP Servers Override Custom Settings
< Wi-Fi Routers

BE550 IPv6 DNS Leak: ISP Servers Override Custom Settings

BE550 IPv6 DNS Leak: ISP Servers Override Custom Settings

BE550 IPv6 DNS Leak: ISP Servers Override Custom Settings
BE550 IPv6 DNS Leak: ISP Servers Override Custom Settings
3 weeks ago - last edited Thursday
Tags: #Firmware Update #DoH/DoT #IPv6 #DNS
Model: Archer BE550  
Hardware Version: V1
Firmware Version: 1.1.2 Build 20250317 rel.18331(5553)

Hi all,

 

I’m running an Archer BE550 (v1.0, BE9300 firmware) with AdGuard’s Encrypted DNS. IPv4 DNS override works perfectly, but IPv6 DNS keeps leaking to my ISP’s resolvers, even when I manually set AdGuard IPv6 DNS servers in the router. It's not just that it leaks - it will work as intended for a few moments but then fails entirely, passing all DNS to my ISP and not encrypting any DNS traffic. My guess is that my ISP is constantly rotating IPv6 assignments and so it just keeps messing up my DNS settings? I am not a network guy so I may be getting lost here.

 

What I’ve tried:

  • Disabled “Get IPv6 DNS from ISP” in settings.

  • Manually set AdGuard IPv6 DNS

  • RA/DHCPv6 set to Managed mode with custom DNS.

  • Tested across multiple devices (Windows, mobile) - all leak IPv6 DNS queries to ISP.

  • Verified with Get-DnsClientServerAddress in PowerShell and DNS leak test sites.

  • Also tested using AdGuard's diagnostic test page - it will indicate encrupted DNS-over-TLS for IPv6 for a few minutes and then fail, as indicated above.

  • Disabling IPv6 entirely stops the leak (all DNS then routes through AdGuard IPv4).

 

Firmware:

  • Current version: 1.1.2 Build 20250317 rel.18331(5553)

  • Newest firmware changelog mentions a fix for Static IPv6 mode default route loss (Bug #5 in latest update), but static IPv6 is not an option available to me per ISP

I am aware Firmware version 1.1.3 Build 20250421 rel.24697 is released - everytime I try to update through the UI, it says unable to connect to cloud server. Not an issue I am trying to address here and I will attempt a manual firmware update to 1.1.3 only if recommended by the TP-Link folks as a potential fix to the below issues.

 

Questions for TP-Link / community:

  1. Is there a known issue where DHCPv6 mode ignores custom IPv6 DNS settings?

  2. Is there a way to completely block ISP-provided IPv6 DNS in RA/DHCPv6 announcements?

 

If others can test this on BE550 / BE9300 models, or have experience with any of this, please let me know. :-) This will help confirm whether it’s firmware-wide or just my setup.

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:BE550 IPv6 DNS Leak: ISP Servers Override Custom Settings-Solution
2 weeks ago - last edited Thursday

Hello @abermuffin,

 

Thank you very much for your detailed description of the DNS settings on the BE550.

 

Based on my understanding of the DoT feature on our router, the current situation may be an expected result. The router currently only supports DoT or DoH over IPv4, and it doesn't support IPv6. And I believe this is the reason why it passes all DNS queries to your ISP after you manually set a static one.

 

I've passed it along to the relevant department and requested future support for DoT/DoH over IPv6.

 

Currently, you can leave the DNS settings to obtain the address automatically from your ISP, or disable IPv6 on the router to allow the query to pass through the encrypted DNS-over-TLS over IPv4.

Nice to Meet You in Our TP-Link Community. Check Out the Latest Posts: Introducing AI QoS: Elevate Your Gaming Experience on the Archer GE800 Gaming Router! Connect TP-Link Archer BE550 to Germany's DS-Lite (Dual Stack Lite) Internet via WAN Archer GE550 - BE9300 Tri-Band Wi-Fi 7 Gaming Router Archer AX90 New Firmware Added Support for EasyMesh and Ethernet Backhaul If you found a post or response helpful, please click Helpful (arrow pointing upward icon). If you are the author of a topic, remember to mark a helpful reply as the "Recommended Solution" (star icon) so that others can benefit from it.
Recommended Solution
  3  
  3  
#2
Options
2 Reply
Re:BE550 IPv6 DNS Leak: ISP Servers Override Custom Settings-Solution
2 weeks ago - last edited Thursday

Hello @abermuffin,

 

Thank you very much for your detailed description of the DNS settings on the BE550.

 

Based on my understanding of the DoT feature on our router, the current situation may be an expected result. The router currently only supports DoT or DoH over IPv4, and it doesn't support IPv6. And I believe this is the reason why it passes all DNS queries to your ISP after you manually set a static one.

 

I've passed it along to the relevant department and requested future support for DoT/DoH over IPv6.

 

Currently, you can leave the DNS settings to obtain the address automatically from your ISP, or disable IPv6 on the router to allow the query to pass through the encrypted DNS-over-TLS over IPv4.

Nice to Meet You in Our TP-Link Community. Check Out the Latest Posts: Introducing AI QoS: Elevate Your Gaming Experience on the Archer GE800 Gaming Router! Connect TP-Link Archer BE550 to Germany's DS-Lite (Dual Stack Lite) Internet via WAN Archer GE550 - BE9300 Tri-Band Wi-Fi 7 Gaming Router Archer AX90 New Firmware Added Support for EasyMesh and Ethernet Backhaul If you found a post or response helpful, please click Helpful (arrow pointing upward icon). If you are the author of a topic, remember to mark a helpful reply as the "Recommended Solution" (star icon) so that others can benefit from it.
Recommended Solution
  3  
  3  
#2
Options
Re:BE550 IPv6 DNS Leak: ISP Servers Override Custom Settings
Thursday

  @Kevin_Z 
Thank you for your reply, Kevin! I appreciate it and I would love for there to be DoT IPv6 support in the future. I love the router otherwise but I was definitely kicking myself in the butt for having not checked that before purchasing it. Thanks again. :-)

  1  
  1  
#3
Options

Information

Helpful: 0

Views: 262

Replies: 2

Tags

Firmware Update DoH/DoT IPv6
DNS
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.