• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

pfSense DNS Resolver / Host Overrides / CERTBOT SSL

Scheduled Pinned Locked Moved DHCP and DNS
5 Posts 2 Posters 734 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • H
    hypernova
    last edited by Feb 4, 2021, 7:20 PM

    I have a DNS Resolved / Host Overrides / CERTBOT question... I assume this is the right subforum to post but I am not completely sure.

    Here's an overview of my system.

    I have a domain name which points to my external IP. Ports 80 and 443 are opened on pfSense. Web traffic to my IP on these ports should be forwarded to 2 or more servers.

    I do this using

    pfSense / DNS Resolver / General Settings / Host Overrides
    

    which I assume is the correct settings within pfSense to change. Here's a list of settings. (Which I've faked for security reasons.)

    Untitled2.png

    Currently apple.mydomain.co.uk appears to be working fine

    orange.mydomain.co.uk redirects to the same webhost as apple

    cauliflour.mydomain.co.uk redirects to the correct webhost, with IP 10.0.0.200, orange should direct to this IP as well, but it doesn't.

    orange and cauliflour should direct to the same machine with the same IP, but should be served by a different virtual host in nginx.

    Finally, cheese.mydomain.co.uk directs to another machine, and this works.

    I don't know how to debug the issue of cauliflour being directed to the wrong machine.

    Further to this, I want to be able to redirect www.orange.mydomain.co.uk to the same IP as orange.mydomain.co.uk. However www.orange... redirects to the same machine as apple.mydomain.co.uk.

    I thought I should be able to add www.orange as a "host" in "host overrides", but it appears to be the case that only a single string like "abcde" can be entered here not something like "abcde.xyz".

    Sorry if this isn't the clearest question, I'm new to all this stuff.

    V 1 Reply Last reply Feb 4, 2021, 9:03 PM Reply Quote 0
    • V
      viragomann @hypernova
      last edited by Feb 4, 2021, 9:03 PM

      If you want to add an additional host name, edit the existing entry, go down to Additional Names for this Host and enter it there.

      @hypernova said in pfSense DNS Resolver / Host Overrides / CERTBOT SSL:

      I thought I should be able to add www.orange as a "host" in "host overrides", but it appears to be the case that only a single string like "abcde" can be entered here not something like "abcde.xyz".

      Here is only the "www" to be entered into the host box, the rest is to be entered into the domain box. The host is only the part between the left and the first dot.

      H 1 Reply Last reply Feb 4, 2021, 10:43 PM Reply Quote 0
      • H
        hypernova @viragomann
        last edited by hypernova Feb 4, 2021, 10:44 PM Feb 4, 2021, 10:43 PM

        @viragomann Thanks for the pointer, I encounter two errors however when trying to do this

        • The field Alias Domain is required.
        • A valid alias hostname is specified, but the domain name part should be omitted

        I entered www.orange into the host name field, and mydomain.co.uk into the domain field.

        I should add, I tried removing the domain field, but still the same error occured.

        V 1 Reply Last reply Feb 4, 2021, 11:02 PM Reply Quote 0
        • V
          viragomann @hypernova
          last edited by Feb 4, 2021, 11:02 PM

          @hypernova
          As I mentioned above, the host name part is ever from the left to the first dot.
          So for www.orange.mydomain.co.uk enter
          www into the host field and
          orange.mydomain.co.uk into the domain field.

          H 1 Reply Last reply Feb 4, 2021, 11:15 PM Reply Quote 0
          • H
            hypernova @viragomann
            last edited by Feb 4, 2021, 11:15 PM

            @viragomann Ah, yes I see that works.

            Ok I guess I was confused as to what hostname/domain name means. I thought host was always the physical machine, but obviously I was mistaken.

            I don't fully understand how it works in detail.

            1 Reply Last reply Reply Quote 0
            3 out of 5
            • First post
              3/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              This community forum collects and processes your personal information.
              consent.not_received