Avaliable Packages missing cant seem to find
-
ok hope i did this right... as ill see if it fails lol..seems after 5 10 min yesterday i don't remember as i dosed off and woke up today and couldn't do the packages or the dns lookup all fails.. i reboot and it works..
so here is image.... and i already had the Do not use the DNS Forwarder/DNS Resolver as a DNS server for the firewall already checked off
-
the above didn't work i back to blank package manager... and the dns lookup doesn't work again
works right after a reboot but after 2 hours i just re tried and she don't work.. but i have internet etc -
i do notice some websites wont work.. like canadacomputers.com when searching.. doesn't always works times out... even if i turn off and on the OpenVPN client no go.. but when i reboot the pfsense.. the dnslookup works... the package manger works.. and the website for searching computer parts works again.. so i frustrated... i didn't have issues till i installed the squid but i have that uninstalled now... but i cant find why i keep loosing out... if part of the program glitched or its a toggle check box … works for a while after a reboot then stops
-
So after some time you just see 'no response' from 8.8.8.8 if you run a lookup?
But initially after a reboot all three servers respond?
Odd. Do you see anything blocked in the firewall log on port 53?
Steve
-
ill have to take a new pic i lost it but when i do a reboot.. only 2 servers respond on that dnslookup.
right now i cant do a package manger i get no packages again.. i ran dnslook up the 8 8 8 8 responds
i looked at logs no port 53 blocked just other ports it shows
-
here is image after i do a reboot i checked package manger and it shows up.. and i took a dnslookup… i find that people say use the filter reload so you don't have to reboot the pfsense computer but i find that does nothing.. a real reboot makes it work for a bit
-
It would help to use name servers that actually respond if you are having DNS issues. Those 103.86.96/99 servers look like they are garbage. Why use them?
-
@derelict said in Avaliable Packages missing cant seem to find:
Those 103.86.96/99 servers look like they are garbage. Why use them?
Have to HIDE my p0rn surfing from my ISP don't ya know ;) Those are nordvpn dns servers..
-
Just switch to the resolver, it's much more reliable than those NordVPN DNS servers.
-
lol haha ya gotta hide the porn.. lol it also for geo location websites i cant access when im in Canada and i want other content
and ya those servers are the nordvpn.. it just started not to long ago this issueas for the resolver is that the dns resolver ..
this is my setup for that
-
Well your clients might be using pfsense, which pfsense resolves. But from your dns diag output you don't have pfsense pointing to itself (resolver)
So it has to use whatever shitty dns you tell it to use, like those nordvpn servers that don't answer or answer in 200+ ms
Just let pfsense point to itself - loopback 127.0.0.1, and NOTHING else and yes have the resolver enabled and NOT in forwarder mode and you should be good and pfsense can find anything it needs to find to update itself.
If you want some clients to use your vpn dns - then point to them on the client side, etc.
-
@comet424 said in Avaliable Packages missing cant seem to find:
it just started not to long ago this issue
Then contact their support if their DNS servers are flaky, maybe they forgot to update the DNSSEC root key.
-
Good luck them even knowing what that is ;)
-
john not sure how to set it to look at itself at 127.0.0.1 i know that's one of the rules or nat settings
and not sure what a dnssec root key is anywaysand i forget someone else was helping me before with nordvpn setup was that you john... here i thought nordvpn was a good company but i having issues …
go figure lol
and i unchecked the dns query forwarding
-
so hopefully that fixes it the unchecked query
if this all doesn't work does that mean there is a problem with the nordvpn servers?
-
@comet424 said in Avaliable Packages missing cant seem to find:
here i thought nordvpn was a good company but i having issues
The business model of all those VPN providers is based on FUD, so you can't call any of them "good". Some may even be worse than your actual ISP when it comes to collecting data.
-
ah ok.. ya i did it cuz of data collecting but mostly i sick and tired im in Canada and cant see Olympics time and i wanna see the usa footage and boom you cant geo location shit.. hate that crap lol and if i get Netflix apparently usa Netflix better then Canada content.. or anything really just frustrating.. i need to immigrant to usa lol
but what does FUD mean
so grimson you don't believe in vpns then i take it.. i just learning as i go teach myself and read etc try to make best educated guesses -
You need to uncheck
Do not use the DNS Forwarder/DNS Resolver as a DNS server for the firewallin System > General to have it use the resolver.
However you have the resolver in forwarding mode anyway so it too will be using those DNS servers defined there rather than the root servers.Steve
-
Which looks like it will be fine if you set the firewall itself to use 8.8.8.8 and 8.8.4.4.
If you want the CLIENTS to resolve using those crappy NordVPN DNS servers then tell the CLIENTS to use those as their DNS servers. Either using DHCP or static config on the CLIENTS themselves.
No reason to hobble the firewall itself just because you want some clients to do this VPN geo-shifting thing.
-
oh ok ill look i had unchecked do not do dns query forwarding under the OpenVPN client..
and what does FUD stand for..and ok thanks for inpuit
