Force/Redirect DNS queries to to another DNS server (internal or external)

  • Hi,

    I've looked around, but could not find an immediate answer.

    Here is the situation:

    • PFSense DHCP is configured to send/set 2 internal DNS servers for any client on the network to use
    • I've some (home automation) devices on my network, with little configuration options (basically set wifi name and wifi passphrase, that's it)
    • which get an IP address from PFSense
    • BUT, they are not using the DNS servers given by my DHCP setup. It seems the vendor is hardcoding the DNS server (in many cases those of google)

    The question :

    • is there a way to force or redirect and queries arriving on the FW "SOURCEIP ->"
    • to another DNS server (preferably internal one, or at minimum for example


  • Yes there is! You can use NAT with redirection. Change its destination IP from -> with redirect target IP

  • Rebel Alliance Developer Netgate

  • Thanks for the info

    with that, I'll try to figure out my ideal setup :
    I've 2 internal DNS,
    x.x.x.12 and x.x.x.13
    which are allowed to (and will) forward non-internal or local requests to Cloudflare DNS (,
    The Firewall itself is also allowed to forward to Cloudflare DNS
    All other requests which are not going to one of the internal dns first (like for those devices with hardcoded dns) should be forced to one of the internal dns

    Would that also be possible?


Log in to reply