Understand DNS Changes after Installing Umbrella Roaming Client

Available Languages

Download Options

  • PDF     (43.7 KB)
    View with Adobe Reader on a variety of devices
Updated:September 11, 2025
Document ID:224886

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

    Introduction

    This document describes DNS changes that happen after installing the Umbrella Roaming Client. 

    Prerequisites

    Requirements

    There are no specific requirements for this document.

    Components Used

    The information in this document is based on Umbrella Roaming Client. 

    The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, ensure that you understand the potential impact of any command.

    Overview

    After you install the Cisco Umbrella Roaming Client, you notice that the IP address gets changed to localhost or 127.0.0.1, otherwise known as the loopback interface. This is normal and expected behavior.

    The Umbrella Roaming Client runs as a local service which is used as a local resolver and DNS forwarder, encrypting and authenticating requests using the DNSCrypt protocol. Requests are then forwarded to Umbrella’s anycast IPs, with the replies returned to the host through the loopback interface. This essentially makes the Umbrella roaming client a DNS Proxy, which is why you see the DNS change to localhost/127.0.0.1. The DNSCrypt protocol makes all of your transactions secure.

    Resolve Internal Hosts when Using Umbrella Roaming Client

    You can still resolve internal hosts by adding these domains in the Dashboard:

    1. Navigate to Deployments > Configuration > Domain Management > Internal Domains.

    2. Select the Add icon.

    Add New Bypass Domain or Server WindowDomain_Management-5.jpg

    When you add a domain to this list, the Umbrella Roaming Client sends these domains to the internal DNS server set by DHCP settings or internal DNS servers statically set prior to starting the Roaming Client service.  For more information, read the Umbrella documentation on adding Internal Domains to the Roaming list

      

    Impact of Changing DNS away from Localhost

    The Roaming Client notices that the DNS servers have changed note down the internal DNS server that has been set. It uses these new DNS servers for internal DNS resolution and set DNS back to localhost to resume normal operation of the service.

    Revision History

    Revision Publish Date Comments
    1.0
    17-Sep-2025
    Initial Release
    TAC Authored

    Contributed by Cisco Engineers

    Was this Document Helpful?

    FeedbackFeedback

    Contact Cisco

    This Document Applies to These Products