1. Home
  2. pfSense® Software
  3. DHCP and DNS
  4. DNS Query Refused over IpSec

DNS Query Refused over IpSec

  • L

    Hi,
    I have Pfsense running on an XG-7100 1U running the default Unbound DNS resolver. All the clients on the LAN side, and connected via OpenVPN are able to resolve dns queries without any issue.

    However, I also have an IpSec site-to-site link set up with an Azure Virtual Network. Connections work fine, i.e. I can connect from and to any host on either side. However dns queries coming from the Azure side get a response: "Query refused"

    I've confirmed that the DNS resolve settings have "Network Interfaces" set to "All" Is there anything else I should set in order to allow resolving queries coming from the IpSec network?

    Thanks.

    0
  • jimp
    Rebel Alliance Developer Netgate

    In the DNS Resolver settings, add entries on the ACL tab to allow access for the other subnet(s)

    1
  • L

    Ah, that fixed it! Thanks for the quick response!

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy