Use other DNS server for local resolving

mrvanity

Hello.
I have a windows domain based on 2016 server, that acts as a dhcp and dns for the local network.This dns points to pfsense for upstream DNS.
Pfsense uses isp dns as upstream.I have pfblockerng configured on pfsense to block categories of traffic.
When i try to see traffic graph from pfsense i only see the local IP's and not hostnames, because of course pfsense cannot resolve local ip's
Is it possible to configure pfsense to use the 2016 server to only to resolve the local ip's.
(like a rule or something ,  if the query conserns the local subnet (192.168.20.x/24 for example), make this query on 192.168.20.10.)

Regards.

johnpoz

Sure setup a domain override.

mrvanity

Thank you for your answer.

My description might not be very good above.
Pfsense in traffic graph does reverse dns queries ip->fqdn. When the query is made how will pfsense know the domain before hand, in order to use the domain override?

Regards

johnpoz

You setup a in-addr.arpa domain, ie reverse zone.

0.168.192.in-addr.arpa

if your using 192.168.0, etc..

mrvanity

@johnpoz:

You setup a in-addr.arpa domain, ie reverse zone.

0.168.192.in-addr.arpa

if your using 192.168.0, etc..

Thank you johnpoz.
The reverse dns zone is configured on the AD DNS.
You mean configure it in the pfsense as well?
It has to be in sync with the ad dns to be up to date.

EDIT: Got it. I entered the reverse zone in domain overrides. Thanx!