Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Wireless and LAN can't resolve vmall.com: 4G can

    Scheduled Pinned Locked Moved DHCP and DNS
    3 Posts 3 Posters 178 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      snore
      last edited by

      Hello,

      I needed to reset the password on my Huawei phone which is on Android 9. The Huawei system app therefor wants to go to a site hwid7.vmall.com. The phone on wifi can't resolve that address. My desktop on LAN can't either (they both can't ping it either). My 4G however can.

      I am using unbound with the root DNS servers (I have not entered any DNS servers manually, anywhere in pfSense. However, when I add for example Google DNS servers on the System/General Setup page they still don't resolve the *.vmall.com site, also not when I select to allow DNS-servers overriden bij DHCP/PPPoE on WAN).

      Am I not supposed to be able to resolve any website when I use unbound with the root DNS servers?

      Thank you,

      1 Reply Last reply Reply Quote 0
      • MikeV7896M
        MikeV7896
        last edited by

        The DNS servers on System > General are only for use by pfSense. Unbound will only use those servers if you have forwarding enabled, rather than normal resolving. If you have the option to override the DNS Server list with ISP DHCP-provided servers, then those ISP servers will replace anything you've specified, again only for pfSense unless you have forwarding enabled in Unbound.

        If you want to forward your DNS queries to Google, configure Google's servers in System > General, then disable the "Allow DNS server list to be overridden..." option, then save the settings. Then go to Services > DNS Resolver and check the box to enable Forwarding Mode. Save and Apply so the change takes effect, then see if things resolve.

        As far as why you're not able to do normal resolution from the root on up, I'm not sure.

        The S in IOT stands for Security

        1 Reply Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator
          last edited by johnpoz

          That FQDN resolves just fine.

           dig hwid7.vmall.com                                                        
                                                                                      
           <<>> DiG 9.14.4 <<>> hwid7.vmall.com                                       
          ; global options: +cmd                                                      
          ; Got answer:                                                               
          ; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18300                    
          ; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1         
                                                                                      
          ; OPT PSEUDOSECTION:                                                        
           EDNS: version: 0, flags:; udp: 4096                                        
          ; QUESTION SECTION:                                                         
          hwid7.vmall.com.               IN      A                                    
                                                                                      
          ; ANSWER SECTION:                                                           
          wid7.vmall.com.        3600    IN      A       160.44.192.109               
                                                                                      
          ; Query time: 303 msec                                                      
          ; SERVER: 192.168.3.10#53(192.168.3.10)                                     
          ; WHEN: Sun Aug 11 11:38:08 Central Daylight Time 2019                      
          ; MSG SIZE  rcvd: 60                                                        
                                                                                      
          

          Do a dig + trace to help you figure out where the resolve process is failing.

          Since it will walk down from roots resolving

          $ dig hwid7.vmall.com +trace
          
          ; <<>> DiG 9.14.4 <<>> hwid7.vmall.com +trace
          ;; global options: +cmd
          .                       81603   IN      NS      a.root-servers.net.
          .                       81603   IN      NS      b.root-servers.net.
          .                       81603   IN      NS      c.root-servers.net.
          .                       81603   IN      NS      d.root-servers.net.
          .                       81603   IN      NS      e.root-servers.net.
          .                       81603   IN      NS      f.root-servers.net.
          .                       81603   IN      NS      g.root-servers.net.
          .                       81603   IN      NS      h.root-servers.net.
          .                       81603   IN      NS      i.root-servers.net.
          .                       81603   IN      NS      j.root-servers.net.
          .                       81603   IN      NS      k.root-servers.net.
          .                       81603   IN      NS      l.root-servers.net.
          .                       81603   IN      NS      m.root-servers.net.
          .                       81603   IN      RRSIG   NS 8 0 518400 20190824050000 20190811040000 59944 . U5tZLW1LD49PZHD6FtQTaEJuuIg1G1xtUb3wymW84x5MyFmrSkzud6zh HzuWWMOVTrBMQCcxa8Q0P1enkXk3s33RpF7dED4LynlrZij76tdI18rD LZ7LocZAih1P2Fpdtpnawa1BH2OJ2wScytFyXtp7og3ntcqe0L83petJ cQUG3D4JdkyHQV3/LjWTOTp+73hz8LZEXeSlFX7PLPTPsuAdVwib4+cp tRa3n3MI8Esu7OzjkHprk5SjWVLfCmK60JAQzWYeCEkPeew0q6tbJmSp PmCbjq34U0L4oM9v5gnonyLYmpSUZSjhVwbBww+I6i/xk/YSrTWycz9r ATq7Kw==
          ;; Received 525 bytes from 192.168.3.10#53(192.168.3.10) in 2 ms
          
          com.                    172800  IN      NS      a.gtld-servers.net.
          com.                    172800  IN      NS      b.gtld-servers.net.
          com.                    172800  IN      NS      c.gtld-servers.net.
          com.                    172800  IN      NS      d.gtld-servers.net.
          com.                    172800  IN      NS      e.gtld-servers.net.
          com.                    172800  IN      NS      f.gtld-servers.net.
          com.                    172800  IN      NS      g.gtld-servers.net.
          com.                    172800  IN      NS      h.gtld-servers.net.
          com.                    172800  IN      NS      i.gtld-servers.net.
          com.                    172800  IN      NS      j.gtld-servers.net.
          com.                    172800  IN      NS      k.gtld-servers.net.
          com.                    172800  IN      NS      l.gtld-servers.net.
          com.                    172800  IN      NS      m.gtld-servers.net.
          com.                    86400   IN      DS      30909 8 2 E2D3C916F6DEEAC73294E8268FB5885044A833FC5459588F4A9184CF C41A5766
          com.                    86400   IN      RRSIG   DS 8 1 86400 20190824050000 20190811040000 59944 . Au9ez+iicXM9ZCVNeBttnieOlMjtSLnFWS3fblB6yuJOPqAJDKlzGzH5 bo5A9agi+6ouB3di2J96Kdn2SE9Uq4mMaye4kQv7z7wUlthjwXadPAGq +nT4osIcOLxlWOCTLDBJnrCg6BnK7LoKMoleZjtQOr4ASNsW3CX3MEat SU/M+S9+Bg2NQeb+Z1rEieXIyG0zvlE+qzEg41rbuqFY3fk9kBMyB/sV 5lUeAZfAhlzH/jjKby+wJsaL+SRCPnstWgokekeZCHwXwJ4iHc2zRyCd 0e+FDT0z/7xouIYQVgt7GVQN0vQ/eUJBd9zhmCUbIfDi7w4AK9ykEJDU jVsVIg==
          ;; Received 1175 bytes from 192.203.230.10#53(e.root-servers.net) in 12 ms
          
          vmall.com.              172800  IN      NS      ns3.dnsv5.com.
          vmall.com.              172800  IN      NS      ns4.dnsv5.com.
          CK0POJMG874LJREF7EFN8430QVIT8BSM.com. 86400 IN NSEC3 1 1 0 - CK0Q1GIN43N1ARRC9OSM6QPQR81H5M9A NS SOA RRSIG DNSKEY NSEC3PARAM
          CK0POJMG874LJREF7EFN8430QVIT8BSM.com. 86400 IN RRSIG NSEC3 8 2 86400 20190815044522 20190808033522 17708 com. mZXFevDe/GAzLCPnKm123kkBDgeuHRJXSkMgsHkACMZmMmA5uCrvxXN8 7fTMTFFESSjd14PwgTavf5fJ4J4COTvIVHg7vrnztrt1JadLK3jXNPJ3 3Z8Cv5VINQMEPSAydR7XeZ8AMCvdkyEKB0jzpen719qTk4WWWAw33Jtw 9a8=
          BBB1CVUR8E83SHB84ISBAL4AU3ETEIFI.com. 86400 IN NSEC3 1 1 0 - BBB2HSGE6I0FF44AAKGTSAOUSUFOV8CM NS DS RRSIG
          BBB1CVUR8E83SHB84ISBAL4AU3ETEIFI.com. 86400 IN RRSIG NSEC3 8 2 86400 20190818042617 20190811031617 17708 com. B1lhNDgU3/6VBZl6Pup6vq5R0D+FFYv4WeLJMQXRpKt2WQLNdQUC5W1t 16PRQgRaWMLgEkhtz32glBlS7NTRxmJlWjvjR9oQG6je8l/YNYRnZJaw qebpAruEltXOxJWlxC7cr0lxiI/y6FYyzDMp/JCMVMT61u7k2RMYykwE WMo=
          ;; Received 907 bytes from 192.12.94.30#53(e.gtld-servers.net) in 32 ms
          
          hwid7.vmall.com.        10      IN      A       160.44.192.109
          vmall.com.              86400   IN      NS      ns3.dnsv5.com.
          vmall.com.              86400   IN      NS      ns4.dnsv5.com.
          ;; Received 126 bytes from 182.140.167.191#53(ns3.dnsv5.com) in 287 ms
          

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.11 | Lab VMs 2.8, 24.11

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.