Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Changes in DNS?

    Scheduled Pinned Locked Moved 2.1 Snapshot Feedback and Problems - RETIRED
    37 Posts 6 Posters 9.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • DerelictD
      Derelict LAYER 8 Netgate
      last edited by

      @sirdir:

      I do disregard them now. But don't you think your setup is somewhat an overkill for a private household?

      And 4 WAN links isn't?  Never occurred to me we were talking about a private home network.  Good luck.

      Chattanooga, Tennessee, USA
      A comprehensive network diagram is worth 10,000 words and 15 conference calls.
      DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
      Do Not Chat For Help! NO_WAN_EGRESS(TM)

      1 Reply Last reply Reply Quote 0
      • S
        sirdir
        last edited by

        @Derelict:

        @sirdir:

        I do disregard them now. But don't you think your setup is somewhat an overkill for a private household?

        And 4 WAN links isn't?  Never occurred to me we were talking about a private home network.  Good luck.

        Guess it is ;)
        It were even 5 but I suspended one (and will probably cancel it). It's difficult to explain. First I had ADSL which is slow and flaky, then I added a WIFI link, then Sat, then a better WIFI link and then another WIFI Link that (because it's very cheap) should replace ADSL as a backup. I'll probably cancel the Sat link when the contract period is over…

        @Johnpoz: I just wanted to jump to the last known working version but I wasn't sure which one that was… so simple…
        When I did this I wasn't even aware that it's a DNS problem. First idea was that it's an ISP problem. As you might know most websites load pics/ads/whatever from different servers and when one of the lookup fails that may cause problems that don't directly point to dns problems.

        1 Reply Last reply Reply Quote 0
        • D
          doktornotor Banned
          last edited by

          @sirdir:

          When I did this I wasn't even aware that it's a DNS problem. First idea was that it's an ISP problem.

          Broken DNS being served via DHCP by ISP sure like hell is ISP problem.

          1 Reply Last reply Reply Quote 0
          • K
            Klaws
            last edited by

            @sirdir:

            It were even 5 but I suspended one (and will probably cancel it). It's difficult to explain. First I had ADSL which is slow and flaky, then I added a WIFI link, then Sat, then a better WIFI link and then another WIFI Link that (because it's very cheap) should replace ADSL as a backup.

            Makes me wonder…who operates the WiFi APs? You neighbor, or your landlord, or some idiot who forgot to enable security on his AP...? :-)

            It might just be aomeone trying to perform an attack utlizing a fake DNS server (but obviously too incompetent to succeed).

            Well, I might just be paranoid. But that doesn't mean that conspiracy theories must be all wrong, right? Seen anything suspicious lately? UFOs? Elvis? Any droids which weren't the droids you were looking for? ;-)

            1 Reply Last reply Reply Quote 0
            • K
              kejianshi
              last edited by

              As an X-Conspirator, I believe in some conspiracy theories…  No reptiles though...  Thats just crazy talk  :P

              1 Reply Last reply Reply Quote 0
              • johnpozJ
                johnpoz LAYER 8 Global Moderator
                last edited by

                "one of the lookup fails that may cause problems that don't directly point to dns problems."

                How is that?  That would be the first thing it would point too, if something doesn't load you would verify name resolution.  Once you verify name resolution, then you check connectivity.  Your name resolution problem may well be a connectivity issue.

                Some websites don't load, images not working - so try a different snap?? Come on dude seriously??

                An intelligent man is sometimes forced to be drunk to spend time with his fools
                If you get confused: Listen to the Music Play
                Please don't Chat/PM me for help, unless mod related
                SG-4860 24.11 | Lab VMs 2.8, 24.11

                1 Reply Last reply Reply Quote 0
                • S
                  sirdir
                  last edited by

                  @doktornotor:

                  @sirdir:

                  When I did this I wasn't even aware that it's a DNS problem. First idea was that it's an ISP problem.

                  Broken DNS being served via DHCP by ISP sure like hell is ISP problem.

                  I agree. On the other hand, 2 bad ones out of 8 shouldn't be a problem (even 7 out of 8 shouldn't). But we're running circles. Maybe I'll try to reproduce the problem some day. What's the best way to capture dns requests on pfsense? Seams to be possible within the gui as I saw in the other posting? For whatever reason the list of available packets doesn't load right now…

                  1 Reply Last reply Reply Quote 0
                  • K
                    kejianshi
                    last edited by

                    Nonsense!  Don't stop now.  I've just gotten my popcorn and soda :-[

                    1 Reply Last reply Reply Quote 0
                    • S
                      sirdir
                      last edited by

                      @Klaws:

                      Makes me wonder…who operates the WiFi APs? You neighbor, or your landlord, or some idiot who forgot to enable security on his AP...? :-)

                      In this area there are a lot of ISPs that provide their services with directed pt2pt WIFI links. The other side of my main link is more than 8 km away on a hill. There's no neighbor signal I could pick up ;)

                      1 Reply Last reply Reply Quote 0
                      • S
                        sirdir
                        last edited by

                        @johnpoz:

                        "one of the lookup fails that may cause problems that don't directly point to dns problems."

                        How is that?  That would be the first thing it would point too, if something doesn't load you would verify name resolution.  Once you verify name resolution, then you check connectivity.  Your name resolution problem may well be a connectivity issue.

                        Some websites don't load, images not working - so try a different snap?? Come on dude seriously??

                        It was not the first thing I did… Listen, I already know you're a genious, OK? As I didn't have any DNS problems the last years when some pages don't load correctly it wasn't the first thing to come to my mind. And unfortunately dig and nslookup behave quite differently form safari. It wouldn't have been the first time my multi WAN setup was causing problems and it wouldn't have been the first time 'trying another snap' would resolve it. Heck, the last few builds even crashed safari beta builds.

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.