Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    DNS server is a client?

    Scheduled Pinned Locked Moved General pfSense Questions
    6 Posts 3 Posters 998 Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      chumunga
      last edited by

      I have two strange issue (I believe) when I perform nslookup google.com the server IP is my PFSense Lan IP but what is strange is the server name is a client computer which isn't the DNS server. Should be PFSense and Hostname is default PFSense.

      nslookup google.com
Server:  1065G7-LPT.mylocal
Address:  192.168.3.1

Non-authoritative answer:
Name:    google.com
Addresses:  2607:f8b0:4005:801::200e
          142.250.72.206

      Under General, DNS Server is 192.168.3.1
      And DNS Resolver is enabled, default as well. d

      Also my PFSense is not the edge device, my Ubiquiti USG3P is if that helps.

      Another strange issue is, I can't seem to resolve https://pfsense.mylocal only the IP

      nslookup pfsense.mylocal
Server:  1065G7-LPT.mylocal
Address:  192.168.3.1

*** 1065G7-LPT.mylocal can't find pfsense.mylocal: Non-existent domain

      Any Ideas, much appreciated.

      1 Reply Last reply Reply Quote 0
      • stephenw10S Online
        stephenw10 Netgate Administrator
        last edited by

        You should not set, what I assume is the LAN IP, for the firewall to use itself.
        It likely makes no difference since by default pfSense will use Unbound and that will be in resolving mode and ignore any servers set there. The servers handed to LAN side clients are in the DHCP settings. If none is set it will default to passing the interface IP.

        I assume pfSense us configured to use the .mylocal domain and not the default .localdomain?

        What is 1065G7-LPT?

        Steve

        C 1 Reply Last reply Reply Quote 0
        • C Offline
          chumunga @stephenw10
          last edited by chumunga

          @stephenw10

          Thank you for your reply. 1065G7-LPT is my laptop and for context, just a client machine. I resolved that, not sure how.

          I went ahead and reconfigured but now the same issue Under Diag > DNS Lookup pfsense can't resolve its own hostname, hostname being "pfsense"

          i've tried pfsense and pfsense.local, pfsense.mylocal (tried changing domain)

          Under General > DNS Server Settings:
          DNS Server Override - Checked
          Disable DNS Forwarder - Unchecked

          Under DNS Resolver:
          I believe everything is default...
          Network Inter: All
          Outgoing Network Int: All
          Transparent
          DNSSEC: Checked
          Python : Unchecked
          DNS Query Forwarding: Unchecked

          I should mention I have PFBlockerng installed, and I believe I didn't have this issue before i installed it. Also, its not just PFsense I can't resolve I can't resolve a desktop and my laptop.

          GertjanG 1 Reply Last reply Reply Quote 0
          • GertjanG Offline
            Gertjan @chumunga
            last edited by

            @chumunga said in DNS server is a client?:

            DNS Server Override - Checked

            DNS Server Override =

            If this option is set, pfSense will use DNS servers assigned by a DHCP/PPP server on WAN for its own purposes (including the DNS Forwarder/DNS Resolver). However, they will not be assigned to DHCP clients.

            This means that the resolver will forward to the DNS the ISP gave you when the connection came up.
            This was how things were been done in the dark ages.
            It's not enabled by default. Use the resolver as a resolver : disable this check.

            No "help me" PM's please. Use the forum, the community will thank you.
            Edit : and where are the logs ??

            1 Reply Last reply Reply Quote 1
            • stephenw10S Online
              stephenw10 Netgate Administrator
              last edited by stephenw10

              It will only do that for clients if Unbound is in forwarding mode.

              If will only do it for pfSense itself if 'Disable DNS Forwarder' is set.

              Otherwise it will pull in DNS servers from the ISP but won't actually use them.

              Except in Diag > DNS Lookup where all configured DNS servers are queried.

              If you have enabled DNS-BL in pfBlocker try disabling it and retest.

              Steve

              C 1 Reply Last reply Reply Quote 1
              • C Offline
                chumunga @stephenw10
                last edited by

                @stephenw10
                We can consider this resolved. I rebooted the machine this morning and something did not go well. I've Factory Reset and back and running I probably broke it with all the packages i was installing, i will proceed with caution this time around. Thanks again.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.