Avaliable Packages missing cant seem to find
-
So after some time you just see 'no response' from 8.8.8.8 if you run a lookup?
But initially after a reboot all three servers respond?
Odd. Do you see anything blocked in the firewall log on port 53?
Steve
-
ill have to take a new pic i lost it but when i do a reboot.. only 2 servers respond on that dnslookup.
right now i cant do a package manger i get no packages again.. i ran dnslook up the 8 8 8 8 responds
i looked at logs no port 53 blocked just other ports it shows
-
here is image after i do a reboot i checked package manger and it shows up.. and i took a dnslookup… i find that people say use the filter reload so you don't have to reboot the pfsense computer but i find that does nothing.. a real reboot makes it work for a bit
-
It would help to use name servers that actually respond if you are having DNS issues. Those 103.86.96/99 servers look like they are garbage. Why use them?
-
@derelict said in Avaliable Packages missing cant seem to find:
Those 103.86.96/99 servers look like they are garbage. Why use them?
Have to HIDE my p0rn surfing from my ISP don't ya know ;) Those are nordvpn dns servers..
-
Just switch to the resolver, it's much more reliable than those NordVPN DNS servers.
-
lol haha ya gotta hide the porn.. lol it also for geo location websites i cant access when im in Canada and i want other content
and ya those servers are the nordvpn.. it just started not to long ago this issueas for the resolver is that the dns resolver ..
this is my setup for that
-
Well your clients might be using pfsense, which pfsense resolves. But from your dns diag output you don't have pfsense pointing to itself (resolver)
So it has to use whatever shitty dns you tell it to use, like those nordvpn servers that don't answer or answer in 200+ ms
Just let pfsense point to itself - loopback 127.0.0.1, and NOTHING else and yes have the resolver enabled and NOT in forwarder mode and you should be good and pfsense can find anything it needs to find to update itself.
If you want some clients to use your vpn dns - then point to them on the client side, etc.
-
@comet424 said in Avaliable Packages missing cant seem to find:
it just started not to long ago this issue
Then contact their support if their DNS servers are flaky, maybe they forgot to update the DNSSEC root key.
-
Good luck them even knowing what that is ;)
-
john not sure how to set it to look at itself at 127.0.0.1 i know that's one of the rules or nat settings
and not sure what a dnssec root key is anywaysand i forget someone else was helping me before with nordvpn setup was that you john... here i thought nordvpn was a good company but i having issues …
go figure lol
and i unchecked the dns query forwarding
-
so hopefully that fixes it the unchecked query
if this all doesn't work does that mean there is a problem with the nordvpn servers?
-
@comet424 said in Avaliable Packages missing cant seem to find:
here i thought nordvpn was a good company but i having issues
The business model of all those VPN providers is based on FUD, so you can't call any of them "good". Some may even be worse than your actual ISP when it comes to collecting data.
-
ah ok.. ya i did it cuz of data collecting but mostly i sick and tired im in Canada and cant see Olympics time and i wanna see the usa footage and boom you cant geo location shit.. hate that crap lol and if i get Netflix apparently usa Netflix better then Canada content.. or anything really just frustrating.. i need to immigrant to usa lol
but what does FUD mean
so grimson you don't believe in vpns then i take it.. i just learning as i go teach myself and read etc try to make best educated guesses -
You need to uncheck
Do not use the DNS Forwarder/DNS Resolver as a DNS server for the firewall
in System > General to have it use the resolver.
However you have the resolver in forwarding mode anyway so it too will be using those DNS servers defined there rather than the root servers.Steve
-
Which looks like it will be fine if you set the firewall itself to use 8.8.8.8 and 8.8.4.4.
If you want the CLIENTS to resolve using those crappy NordVPN DNS servers then tell the CLIENTS to use those as their DNS servers. Either using DHCP or static config on the CLIENTS themselves.
No reason to hobble the firewall itself just because you want some clients to do this VPN geo-shifting thing.
-
oh ok ill look i had unchecked do not do dns query forwarding under the OpenVPN client..
and what does FUD stand for..and ok thanks for inpuit
-
https://en.wikipedia.org/wiki/Fear,_uncertainty_and_doubt
Basically VPN providers telling people that if you don't use a VPN your identity will be stolen in seconds etc.
There are many legitimate reasons to use a VPN of course...
Steve
-
so I changed it so those crapy vpn dns are under dhcp server
and I left the 8 8 8 8
but still package manger looses the packages
now the 3 last pics I did after I unchecked the disable dns forwarder with it checked and without it checked.. didn't work.. but it always works after a reboot of the pfsense… then time goes by yesterday it was still working after couple hours... but this morning boom gone..
so where else do I look for this happening to resolve
-