Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Dns rebounder not working

    Scheduled Pinned Locked Moved DHCP and DNS
    5 Posts 2 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M Offline
      Mithrondil
      last edited by

      The rebounder isnt performing dns services, can any1 guide me thru the process of checking if its not configured properly?

      Thnx in advance for any reply.

      1 Reply Last reply Reply Quote 0
      • johnpozJ Offline
        johnpoz LAYER 8 Global Moderator
        last edited by

        rebounder??  What is that?  You mean resolver unbound?

        Is the service running?  What is it not doing, does it not resolve local, does it not resolve multiple domains, specific one.  Does it give you a timeout when your clients query, does it send back SERVFAIL.  What is in the logs?

        Is this a clean install, upgrade, you switch from the forwarder to resolver?  Something to work with is required to help you pinpoint the source of your problem.

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 25.07.1 | Lab VMs 2.8.1, 25.07.1

        1 Reply Last reply Reply Quote 0
        • M Offline
          Mithrondil
          last edited by

          Sorry yea, I mean dns resolver, I keep forgetting they changed the name of it.
          Yes, dns resolver service is running, and the DHCP server is configured to use "this interface IP" for dns lookups, but dns resolver isnt caching or responding to any dns requests.

          This is not a clean install, is an upgrade.

          1 Reply Last reply Reply Quote 0
          • M Offline
            Mithrondil
            last edited by

            When I try to use the dns resolver everything just times out.
            This happens on all my devices thats set to use pfsense dns resolver.

            This site can’t be reached

            viaplay.se’s server DNS address could not be found.
            ERR_NAME_NOT_RESOLVED

            ![dns resolver2.jpg](/public/imported_attachments/1/dns resolver2.jpg)
            ![dns resolver.jpg](/public/imported_attachments/1/dns resolver.jpg)
            ![dns resolver.jpg_thumb](/public/imported_attachments/1/dns resolver.jpg_thumb)
            ![dns resolver2.jpg_thumb](/public/imported_attachments/1/dns resolver2.jpg_thumb)

            1 Reply Last reply Reply Quote 0
            • johnpozJ Offline
              johnpoz LAYER 8 Global Moderator
              last edited by

              It was never called rebounder ;)

              The resolver walks down from roots and talks to each name server down the tree until it actually queries the authoritative server for the domain your wanting to query a specific record, etc.

              So depending what your isp does, or what your blocking say in front of pfsense if you can not talk directly to name servers then yeah resolver is never going to work.

              From your stats there doesn't seem like your even seeing any queries to it.. Are your clients able to talk to pfsense on 53 udp?  You notice for example mine

              May 22 06:51:21 unbound 21699:0 info: server stats for thread 1: 5006 queries, 1763 answers from cache, 3243 recursions, 154 prefetch

              Curious why you have dpinger off?  And depending how your using pfblocker it not running could cause you dns troubles.

              Have you edited your default lan rules?  Common mistake is only allow tcp, when dns requires UDP.  Can you query pfsense IP for something that should be local, like its own name.. Use your fav dns query tool, nslookup, dig, drill, host, etc.  shoot even a simple ping for pfsense host name should return its ip.

              
user@ubuntu:~$ dig pfsense.local.lan

; <<>> DiG 9.9.5-3ubuntu0.8-Ubuntu <<>> pfsense.local.lan
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55046
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;pfsense.local.lan.             IN      A

;; ANSWER SECTION:
pfsense.local.lan.      3600    IN      A       192.168.9.253

;; Query time: 3 msec
;; SERVER: 192.168.9.253#53(192.168.9.253)
;; WHEN: Tue May 24 08:01:01 CDT 2016
;; MSG SIZE  rcvd: 62

user@ubuntu:~$

              An intelligent man is sometimes forced to be drunk to spend time with his fools
              If you get confused: Listen to the Music Play
              Please don't Chat/PM me for help, unless mod related
              SG-4860 25.07.1 | Lab VMs 2.8.1, 25.07.1

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.