Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Why I Don't Like Localhost Doing DNS

    Scheduled Pinned Locked Moved
    Off-Topic & Non-Support Discussion
    1
    1
    183
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • NollipfSenseN
      NollipfSense
      last edited by NollipfSense

      I never like the idea of localhost (127.0.0.1) for DNS and always specify using 192.168.1.1 or an LAN IP...why, it just seems that locahhost is vulnerable...case in point, I have an email server on an external host provider and have implemented DMARC, the domain-based message authentication reporting, security email protocol to prevent spoofing. However, it seems that it using localhost as DNS that seems to bypass the very DMARC and instead of emulating IDS/IPS to drop the message, localhost sends the message to the email account holder basically from the email account holder.

      Someone needs to create an email IDS/IPS...makes sense? @bmeeks could you!

      pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
      pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

      1 Reply Last reply Reply Quote 0
      • NollipfSenseN NollipfSense referenced this topic on
      • First post
        Last post