Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    DNS forwarder Domain Controller -> Pfsense

    Scheduled Pinned Locked Moved DHCP and DNS
    1 Posts 1 Posters 99 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      IrixOS
      last edited by IrixOS

      Hi,

      For security purpose I want my domain controller who also is a DNS server to resolve only internal names and to forward external queries to pfsense.
      I have configured the forwarder as shown in the image and it still uses its local windows dns server to process the request (www.wikipedia.org).

      I don't know what causes this behavior. It shouldn't because the firewalls ip address is validated as shown in the image. Doesn't make sense.
      When doing nslookup www.wikipedia org from a non-domain windows 10 client it points to the firewall which is the expected behavior.

      Does someone have an idea, I might have overlooked something I don't know.
      Bing AI chat did all it could I guess but after some time it was repeating the same solution over and over again about firewall rules and deleting root hints etc,...
      The solution should be obvious without deleting anything. Doesn't make sense.
      It must be common practice to separate internal and external name resolution for security reasons right?
      The ip address of pfsense is 10.216.2.2
      I'm curious if someone can give me a hint.

      Thank you, I appreciate.

      Forwarder.jpg

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.