Firewall resolving DNSBL IP address on VLANs
-
I currently have a network setup in the following manner:
VLAN101: 192.168.30.0/24 VLAN102: 192.168.40.0/24Each VLAN uses the virtual IP of the firewall as their gateway (and for DNS):
VLAN101: 192.168.30.1 VLAN102: 192.168.40.1I am also using pfBlockerNG with a DNSBL IP address (accessible from all VLANs) to sinkhole ad domains:
DNSBL: 10.10.10.1When I resolve firewall.lan from any of the VLANs, I receive the DNSBL IP address of 10.10.10.1, however when resolving firewall.lan from each of the VLANs I want to receive the current gateway IP address of that VLAN.
So, what I want to achieve is for example when resolving firewall.lan from VLAN101 I would receive the IP address of 192.168.30.1.
I have attempted to solve this problem using unbound views, for example:
server: access-control-view: 192.168.30.0/24 test view: name: "test" local-zone: "lan" inform local-data: "firewall.lan. 90 IN A 192.168.30.1"Which works as expected, however after setting this view I can no longer resolve any other hosts on the subnet.
I can only resolve firewall.lan, but no longer resolve any other host on 192.168.30.0/24 (such as nas.lan).
Can somebody assist me to fix this issue?
Is there a way to configure the unbound view to otherwise pass the request through so I can use the specific view, but also the dynamically registered users from dhcp?
Thanks in advance