Dns query
-
thanks very much
I am using pfsense for dns, and openvpn (PIA) is set as the default gateway
I setup a new rule with the devices IP to point to WAN instead of the OpenVPN connection, but it doesn't resolve dns, I shall try this.
Thanks again
-
Hi
I have my ps4 lan rule to forward straight to the WAN, would I just add another rule on the lan interface to pass dns traffic to port 53?
Thanks very much really appreciate the help!
-
Yes, the rule for accessing the LAN interface must not have set a gateway.
Your PS4 rule allows only traffic to the WAN GW. Access to LAN address do not pass this. So you have to an additional rule for DNS using no gateway (set to default) and put it above the other PS4 rule.
-
thats great thanks very much, really appreciate your help! :-)
-
Hi
does the below set off rules look okay?
Thanks again!
-
Other than dns uses UDP, and sometimes - not very often tcp. An you only have tcp vs udp/tcp on your dns rule.
And your Source port should be ANY.. not 53… Your dest is 53, but you have no idea what port the client would use for a dns query.
-
I mentioned it above in Reply #3.
:) -
You did - and clearly he didn't listen ;)
-
Sure, it won't be any risk if also other clients access the DNS server. Since you control all clients this is on you anyway.
You may also add an Alias for a group of granted host address (Firewall > Aliases > IP) and use this on in the firewall rule for source. -
Thanks very much working great now appreciate your help ;D
