TinyDNS for internal DNS, need help

romainp

Hi guys,
I hope that someone could help me with this. I am trying to understand how works dns package of pfsense and its use.
My primary goal is to use the dns server tiny dns as my internal dns server so I can manage my domain and records.
But I can't understand how to configure to right way with dns forwarder and dhcp and can't fin a valid how to to achieve this.

Can somebody gives me some hints or advices to do this? BTW I am using PFsense 2 right now
Thanks

cirmler

@romainp:

Hi guys,
I hope that someone could help me with this. I am trying to understand how works dns package of pfsense and its use.
My primary goal is to use the dns server tiny dns as my internal dns server so I can manage my domain and records.
But I can't understand how to configure to right way with dns forwarder and dhcp and can't fin a valid how to to achieve this.

Can somebody gives me some hints or advices to do this? BTW I am using PFsense 2 right now
Thanks

Same here! Would be great if someone could offer some "first steps" including how to set up the rule to query from LAN

Porklaser

Same here. I'd like to run my own resolver for 2 reasons:

1. My ISP's dns servers are infected with adware and can't be trusted. (No charter, putting a cookie in my browser and showing me a fake 404 page instead of an ad laden search page doesn't cut it)

2. Google's DNS servers (And other public DNS resolvers) work, but break brain-dead geolocation caching schemes so. (Akamai and friends)

cirmler

Maybe someone can point us to an manual… ?!  :'(

Thanks!

arunkeerthan

Same here….I dont know why people always remains silent when we are talking about tiny DNS and internal DNS server.    I have some unanswered old threads related with .
Nobody here to help in this whole forum..... ???

p0ddie

Add me to the list of people trying to get tinydns to work as internal dns server… I started my own thread here http://forum.pfsense.org/index.php/topic,33441.0.html before I found this one… It seems like either no one knows how tinydns works, it's simply broken and people ran out of patience replying to posts about it... or no one likes tinydns and ignores it ;-)

Does anyone have a running installation?

romainp

I haven't for a while now since I focus on having a stable pf2 running.
But for what I understand, all traffic comming from your lan (for ex) to the port 53  udp should be redirected to 127.0.0.1 where the tindns daemon listen for connection.

I will test further as soon as I can.

p0ddie

Spent another hour trying to figure out how to set this up, also with firewall rules.

Please check out my setup:

Setup of tinyDNS: http://img412.imageshack.us/i/tinyb.jpg/
Firewall rule: http://img13.imageshack.us/i/rule2.jpg/
Firewall rule in detail: http://img195.imageshack.us/i/ruleb.jpg/

Is there something faulty or should it work like this?

romainp

Seems good. At least that's what I wanted to setup.

Only thing: have you setup the port forward?
For what I understand, the dhcp server (from the lan let's say) should give the ip of the lan ip as the dns server
then forward the port 53 udp from the lan ip to the 127.0.0.1 ip.
It should then be able to resolve internaly. For external resolution, I think tinydns should give the request to the dns forwarder.
At this point, it should work as the package wants us to do so.

I have not tested this solution right now, but as soon as I can I will try the exact same config as yours.

p0ddie

I was under the impression tinyDNS is a real dns server, querying root servers for all external dns entries… that's what I need. If I wanted to rely on dns queries being forwarded to other dns servers, I'd just stick to the dns forwarder (which I am doing now because I currently have no other dns server around...).