DNS request REFUSED over IPSec tunnel
-
Hi,
I have a problem to get answer from a DNS (pfsense's DNS) over an IPsec connection.- I set up ipsec on both side
- I can ping machines from one network to the other (pfsenses' LAN addresses as well)
- I set DNS to answer on it's LAN address (it works for machine in the LAN)
- I add a floating firewall rule to all port 53 (tcp/udp)
-> however I still get a REFUSED on nslookup when trying to resolve a domain from one site to the other side's DNS
Any idea ? did I miss a step or something ?
-
@nkamennoff
I had to create a access list of subnets allowed on my dns resolver. -
@gjaltemba said in DNS request REFUSED over IPSec tunnel:
I had to create a access list of subnets allowed on my dns resolver.
It's works ! thanks, I did saw this and I was looking for ages !
-
@nkamennoff Thanks for the update and the up-vote.