DNS server is a client?
-
I have two strange issue (I believe) when I perform nslookup google.com the server IP is my PFSense Lan IP but what is strange is the server name is a client computer which isn't the DNS server. Should be PFSense and Hostname is default PFSense.
nslookup google.com Server: 1065G7-LPT.mylocal Address: 192.168.3.1 Non-authoritative answer: Name: google.com Addresses: 2607:f8b0:4005:801::200e 142.250.72.206
Under General, DNS Server is 192.168.3.1
And DNS Resolver is enabled, default as well. dAlso my PFSense is not the edge device, my Ubiquiti USG3P is if that helps.
Another strange issue is, I can't seem to resolve https://pfsense.mylocal only the IP
nslookup pfsense.mylocal Server: 1065G7-LPT.mylocal Address: 192.168.3.1 *** 1065G7-LPT.mylocal can't find pfsense.mylocal: Non-existent domain
Any Ideas, much appreciated.
-
You should not set, what I assume is the LAN IP, for the firewall to use itself.
It likely makes no difference since by default pfSense will use Unbound and that will be in resolving mode and ignore any servers set there. The servers handed to LAN side clients are in the DHCP settings. If none is set it will default to passing the interface IP.I assume pfSense us configured to use the .mylocal domain and not the default .localdomain?
What is 1065G7-LPT?
Steve
-
Thank you for your reply. 1065G7-LPT is my laptop and for context, just a client machine. I resolved that, not sure how.
I went ahead and reconfigured but now the same issue Under Diag > DNS Lookup pfsense can't resolve its own hostname, hostname being "pfsense"
i've tried pfsense and pfsense.local, pfsense.mylocal (tried changing domain)
Under General > DNS Server Settings:
DNS Server Override - Checked
Disable DNS Forwarder - UncheckedUnder DNS Resolver:
I believe everything is default...
Network Inter: All
Outgoing Network Int: All
Transparent
DNSSEC: Checked
Python : Unchecked
DNS Query Forwarding: UncheckedI should mention I have PFBlockerng installed, and I believe I didn't have this issue before i installed it. Also, its not just PFsense I can't resolve I can't resolve a desktop and my laptop.
-
@chumunga said in DNS server is a client?:
DNS Server Override - Checked
DNS Server Override =
If this option is set, pfSense will use DNS servers assigned by a DHCP/PPP server on WAN for its own purposes (including the DNS Forwarder/DNS Resolver). However, they will not be assigned to DHCP clients.
This means that the resolver will forward to the DNS the ISP gave you when the connection came up.
This was how things were been done in the dark ages.
It's not enabled by default. Use the resolver as a resolver : disable this check. -
It will only do that for clients if Unbound is in forwarding mode.
If will only do it for pfSense itself if 'Disable DNS Forwarder' is set.
Otherwise it will pull in DNS servers from the ISP but won't actually use them.
Except in Diag > DNS Lookup where all configured DNS servers are queried.
If you have enabled DNS-BL in pfBlocker try disabling it and retest.
Steve
-
@stephenw10
We can consider this resolved. I rebooted the machine this morning and something did not go well. I've Factory Reset and back and running I probably broke it with all the packages i was installing, i will proceed with caution this time around. Thanks again.