Split DNS: Can't get the right Cert from Mailserver from internal Network w iOS



  • Hi,

    I can access my mailserver via a 1:1 NAT with its virtual IP from outside my network.
    Works just fine.

    If set an DNS Resolver entry to access the mailserver directly from inside the network.
    No problem from my Fat Client (MacBook).
    But my iPhone can't get an connection its says its not secure, if I hit details it show me the pfsense certificate…

    Does anybody knows this effect?
    Any solutions for it?


  • LAYER 8 Global Moderator

    "if I hit details it show me the pfsense certificate…"

    That is not host override or split dns, that is nat reflection issue.  Your iphone is prob not using your local dns..  And getting your public IP vs the local override you setup.



  • @johnpoz:

    "if I hit details it show me the pfsense certificate…"

    That is not host override or split dns, that is nat reflection issue.  Your iphone is prob not using your local dns..  And getting your public IP vs the local override you setup.

    lol… You are completely right. I checked the iPhone setting and of course there was a Google DNS entered... After changing to internal DNS it works how it should.

    Thanks!


Log in to reply