Name server behind pfSense not working properly
-
Hi guys,
I have got a nameserver ns1.domain.com sitting behind a pfSense firewall. The nameserver is facing public using port 53 via NAT and is running ubuntu. The problem is that, i am able to dig locally, but not externally. For eg: dig @192.168.1.5 testdomain.com gives the record but dig@publicip testdomain.com gives error: connection timed out, no servers were found.
What could be wrong?
-
So your on the 192.168.1 network and trying to hit the public IP to be reflected back in.. Did you setup nat reflection?
Hosting dns to the public is normally a really bad idea!!!
-
YEP… DO YOU MEAN PORT FORWARD? YES... BUT WHEN I TRY TO PARK A DOMAIN TO MY NAME SERVERS FROM GODADDY IT TELLS ME ERROR: OBJECT NOT FOUND. WHEN I PERFORM A DIG.... I GET CONNECTION TIMED OUT.. NO SERVERS COULD BE REACHED....
-
Where do i set up NAT reflection?
-
It's in the port-forward under 'NAT reflection'.
If you use pure NAT, go to system/advanced/Firewall & NAT and check the box to enable automatic OB NAT for Reflection.You probably shouldn't be hosting your public zone, but that is another discussion.