Windows 8 and 8.1 Forums

What's the deal with Modern apps and DNS Client Service?

  1. #1

    Posts : 1
    Windows 8.1

    What's the deal with Modern apps and DNS Client Service?

    I'm more curious about this than anything because I just wasted and hour to figure it out. If I disable the DNS Client Service on Windows 8.1 it seems to break a lot of Modern apps. If it's set to start manually, some Modern apps trigger it to start.

    Do Modern apps make queries directly to the DNS Client Service or something weird?

      My System SpecsSystem Spec

  2. #2

    Posts : 39
    Windows 8.1 Update 1 64bit Pro

    Yeah I came across this just now, and was diagnosing the firewall and know the exact cause.

    So when dns client is enabled, all dns requests are routed via it, meaning applications do not need specific udp port 53 internet access.
    If the dns client is disabled any internet application that wants to do a dns lookup will need outbound udp port 53 traffic allowed.

    Now there is some undocumented behaviour going on.

    There is hidden WSH Network hardened rules in the windows firewall, these rules are "always" enabled. Regardless of default outbound state in the windows firewall. (allow rules also wont allow the traffic)
    So the default windows firewall configuration is to require allow rules for inbound traffic and allow all outbound traffic.
    However there is hidden rules that block certain traffic Microsoft decided to block, and it seems wermgr.exe which is used by metro apps, cannot send out dns traffic, the hardened rules block it.

    My gut guess is this is a bug that is yet to be fixed. Because the vast majority of people (well over 99%) will have dns client service enabled in its default state.

    Interestingly the hidden rules still kick in if you disable the firewall in the advanced UI. The only way to stop the rules is to actually disable the firewall service which is obviously not recommended, meaning the sane choice is either to keep dns client enabled, dont use modern apps or use a 3rd party software firewall in place of the windows firewall.
      My System SpecsSystem Spec

  3. #3

    you really should be concerned with this, hehe

    this was an article about how hackers are using the default "hidden" connections that are deemed "safe" like these networks that check certificates and everything!

    and one thing you will not find, is what these hidden little holes in your firewall send.. go ahead and google the entire world.. and you won't find a single thing on these kinds of things like AKamai etc..

    Click image for larger version
      My System SpecsSystem Spec

What's the deal with Modern apps and DNS Client Service?

Similar Threads
Thread Forum
The Group Policy Client service failed to start error
The system log shows The Group Policy Client service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. That tells me nothing. I can use the computer because I am the administrator, I can access files, programs, etc....
General Support
How can I repair modern apps in win 8?
so i have this problem, wherein all of my apps aren't functioning it says, 50247 could someone help please.
Software and Apps
Apps - Uninstall Modern Apps in Windows 8
How to Uninstall Modern Apps in Windows 8 and 8.1 This tutorial will show you how to uninstall modern apps in only your account in Windows 8 or 8.1 that came included in Windows and installed from the Windows Store. When you uninstall an app, it will be completely uninstalled from only...
DHCP Client Service Makes my PC lag
OS: Windows 8.1 Pro Processor: AMD FX-1400 Quad Core RAM: 8.00 GB Storage: 1.73 TB of 1.81 TB available System Type: 64-bit Operating System, x64 based processor ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ My PC was having some sounds with its audio a while ago, and by fixing it, I enabled...
Network & Sharing
Error: Group Policy Client service failed the sign-in
Has anyone seen this error before? "The Group Policy Client service failed the sign-in. The universal unique identifier (UUID) type is not supported." I got the error when signing in with my normal non-Admin local account. I'd just updated to the latest set of patches from Microsoft, and...
User Accounts and Family Safety
So, do you use W8 Modern UI apps?
I am reading everywhere that Windows 8 is not being very successful by now, but the big thing with Windows 8 is Modern UI and the whole new ecosystem of apps, market and interface. And I still don't know how much are Windows 8 users using all of it. For instance, I never use Modern UI at...
Software and Apps

Eight Forums Android App Eight Forums IOS App Follow us on Facebook