DNS Unbound- SSL not translating over to our web server which is hosted locally
-
So we have two networks one is 10.10.10.0/24 (<- Server Ip addresses) The other is our home network 192.168.9.0/24. We also have a few other networks as well but from the outside we have been using Nat routing to our 10.10.10.4 example ip for our web and email servers.. As an example if these servers are running https on them for some reason from the home network of lets say 192.168.9.3 as an example we get this error.
Potential DNS Rebind attack detected, see http://en.wikipedia.org/wiki/DNS_rebinding
Try accessing the router by IP address instead of by hostname.
Now we have everything forwarded to the appropriate location we think..
What settings should i change?? If i put the server into mixed mode non ssl and ssl it works if i put it with ssl only it doesn't work and gives me the rebind attack.
-
under System / Advanced / Admin Access
-
You could either completely disable rebind protection, or just set those domains as private in unbound.
https://docs.netgate.com/pfsense/en/latest/dns/dns-rebinding-protections.html
-
@kiokoman Thank you for showing me how to disable the rebinding checks!
These are public domains and the goal is to have them NATed to my webserver however now pfsense is claiming https://lorentedford.com how do i fix this?
-
By the way your spam protection sucks.. It didn't allow for me to past the contents of the custom options in code for some reason here is that screen shot..
You guys might get that fixed..
