• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Pfsense use Open DNS

Scheduled Pinned Locked Moved General pfSense Questions
5 Posts 3 Posters 874 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • P
    perfectdark
    last edited by perfectdark Feb 3, 2019, 2:04 AM Feb 3, 2019, 2:01 AM

    Hi
    I have pfsense 3 with NIC cards
    1 - WAN
    2 - LAN
    3 - LAN connecting to VPN (using WAN OPT1)

    I would like to use Open DNS (family) on my whole network. Problem is every time I change the DNS from my airvpn's 10.4.0.1 I can no longer resolve websites on my clients. Is there specific settings I should have? I have DNS forwarder enabled and tried adding the Open DNS there, as well as DHCP Server but that results in no connectivity.

    I have DNS leak rules (I used a setup guide) I've tried disabling those as well but no luck

    Below arrow I tried changing this to OPT1 AirVPN_WAN - no luck
    2_1549159257630_general dns.PNG

    below I disabled the BLOCK_DNS_LEAKS_VPN - no luck
    0_1549159393160_dns rules.PNG
    see Servers my AirVPN DNS is 10.4.0.1 I changed this to open DNS 208.67.222.123 (and others) - no luck
    0_1549159417237_dns-.PNG

    1 Reply Last reply Reply Quote 0
    • E
      emammadov
      last edited by emammadov Feb 4, 2019, 8:18 PM Feb 4, 2019, 8:15 PM

      Your firewall rules are incorrect. Create new rule source any, destination any.
      Beside this, delete 10.4.0.1 as a dns server from dhcp server. Instead, type each gateway ip address as a dns server in its interface. DNS server192.168.123.1 in Lan, DNS Server 10.4.0.1 in AirVPN-WAN

      Elvin

      P 1 Reply Last reply Feb 5, 2019, 12:35 AM Reply Quote 0
      • P
        perfectdark @emammadov
        last edited by Feb 5, 2019, 12:35 AM

        @emammadov thanks for the reply but your suggestions didn't work.
        First when I entered the firewall rule allow "source any, destination any" I no longer had internet connectivity from my LAN
        Second, I deleted 10.4.0.1 from DHCP server and tried both leaving blank and entering the LAN IP (192.168.123.1) both didn't work. Once Pfsense rebooted each time I had no connectivity. I also disabled all my current firewall rules to remove them from the equation and no change. I can resolve websites from Pfsense but not from my LAN. I'm at a loss on what to do.
        firewall disabled
        0_1549326913344_firewall.PNG

        DNS server removed (blank) and then entered LAN Gateway IP
        0_1549326925002_2.PNG

        1 Reply Last reply Reply Quote 0
        • B
          bcruze
          last edited by bcruze Feb 5, 2019, 12:49 AM Feb 5, 2019, 12:41 AM

          works perfectly for me.

          what is your DNS resolver set too? i created static mappings for each computers for that tunnel and then plugged in the DNS server for Airvpn as shows. passes the ipleak.net tests like nothing

          0_1549327273293_airvpn.jpeg0_1549327379093_ipleak.jpeg0_1549327755437_firewall-rules-edit.jpeg

          1 Reply Last reply Reply Quote 0
          • P
            perfectdark
            last edited by Feb 5, 2019, 12:48 AM

            working now
            I have DNS Forwarder enabled not DNS resolver

            I removed 10.4.0.1 from DHCP Server DNS, and in general / system setup I kept adding the open dns thee under dNS Servers but changing the interface to AirVPN_WAN - opt2 . When I removed this and left both interfaces as WAN the Open DNS works

            1 Reply Last reply Reply Quote 0
            5 out of 5
            • First post
              5/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              This community forum collects and processes your personal information.
              consent.not_received