Netflix and Hulu won't stream, Prime video will.
-
When I run it through the VPN, yes. When I bypass the VPN, no.
Nobody has asked for screenshots yet, so what do you want to see?
This?
This?
That?
Thus?
Other?
-
Maybe post some pics of your unbound settings.
Are you doing DNS redirecting? From your posts it doesn't sound like you are but I know some of the guides for setting up VPN client include the steps for redirecting DNS and sending the requests over the VPN.
-
I'm not sure what an unbound setting is, so I'm going to have to assume it's set to default, or I just don't understand what you mean.
Basically, everything is default, other than what the NordVPN guide said to do, plus some extra steps for setting up the alias/Rules to allow specific devices to bypass the VPN.
I haven't had a chance to get any further into personalizing my pfsense setup, and do stuff like add packages, or shape traffic, or monitor or anything, because I'm still trying to get through the metaphorical front door. The setting up of the VPN was the first "unique" thing I've tried, and I'm think I've got that part working, but something else, besides the VPN is giving me issues.
Edit:
I'll take my best stab at it, based on the NordVPN guide, this stuff?
-
The resolver screen shot is what I was looking for, you got it. Can you post your Port Forward screen as well to see if you are doing any redirecting?
For troubleshooting I would recommend reverting the settings in the resolver back to their defaults. Or at a minimum I would set the outgoing network interface to WAN.
As an alternative to using the VPN for your DNS traffic you could do DNS over TLS to cloudflare or quad9. That should keep your ISP from snooping on your DNS queries and you would still be able to resolve DNS if your VPN went offline for some reason.
-
-
That helps but what I was asking for is under firewall\nat\port forward.
-
Oh I haven't done anything in there, it's empty.
OK, so I'm gonna try the troubleshooting bit you mentioned. I'll try setting outbound to WAN
-
OK then, it's working. Changing that to WAN works.
Does this mean the VPN is now being fully bypassed by everything? Or do the rules/aliases still count?
-
Switching the Outgoing Network Interface setting to WAN means that the DNS query traffic from your DNS resolver in pfsense will go through your WAN interface, where before it was going through your VPN.
All your host traffic should be going through which ever gateway you configured in your firewall rules. So if I remember your setup correctly, all the traffic in that alias should use the WAN and everything else uses the VPN.
Netflix wasn't working because of some sophisticated systems they setup to detect if users are using a VPN or some sort of other mechanism to get around their geo blocks. DNS is part of that, but I don't have time to explain right now.
-
That's the Forwarder.
As the image stated, it's deactivated.The Resolver ?
-
This post is deleted!
