• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Dns forwarder

DHCP and DNS
3
5
3.1k
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • A
    amathar
    last edited by Jun 21, 2007, 1:56 PM

    I have a problem using the dnsforwarder. The forwarder is working correctly, but I want to override one address. So I configured the address and the forward lookup ist working well. But I dont get any reverse lookup. Does the dns override only work in one way ?
    Thanks

    Peter

    1 Reply Last reply Reply Quote 0
    • C
      cmb
      last edited by Jun 22, 2007, 11:11 PM

      Yes, it does not do reverse lookups.

      1 Reply Last reply Reply Quote 0
      • A
        amathar
        last edited by Jun 25, 2007, 10:36 AM

        My pfsense installation has three interfaces and I use one of these interfaces for ssl encrypted administration. Now I want the user to authenticate via a ssl encrypted page (someone has to document that max keylength to use here is 1024 bit - I tried 2048 bit…) and I thougt I could use the same certificate for that. But the dnsforwarder does only a forward lookup and the ssl certificate can not be verified this way.
        Is there any reason to do no reverse lookups?

        1 Reply Last reply Reply Quote 0
        • C
          cmb
          last edited by Jun 26, 2007, 5:52 AM

          @amathar:

          My pfsense installation has three interfaces and I use one of these interfaces for ssl encrypted administration. Now I want the user to authenticate via a ssl encrypted page (someone has to document that max keylength to use here is 1024 bit - I tried 2048 bit…) and I thougt I could use the same certificate for that. But the dnsforwarder does only a forward lookup and the ssl certificate can not be verified this way.
          Is there any reason to do no reverse lookups?

          I'm not sure if dnsmasq, the forwarder we use, supports lookups with local PTR records. If it doesn't, that's why. If it does, it's just that nobody has implemented it. If you care to look into the capabilities of dnsmasq, report back with what you find.

          1 Reply Last reply Reply Quote 0
          • P
            Perry
            last edited by Jun 26, 2007, 8:11 AM

            http://osdir.com/ml/network.dns.dnsmasq.general/2006-10/msg00002.html

            seems that it can be done with local

            release version 2.39 is out as a side note

            /Perry
            doc.pfsense.org

            1 Reply Last reply Reply Quote 0
            1 out of 5
            • First post
              1/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.