Apply pfBlockerNG DNSBL to one VLAN but not the LAN (or other VLAN)?
-
How do I get pfBlockerNG DNSBL to apply ONLY to a specific VLAN and not all interfaces?
If it requires setting up a separate DNS Server for each interface, how do I do that if I'm using UNBOUND as the Resolver (not using Forwarding)?
I have pfBlockerNG-Devel running successfully (it's great). I've recently setup a VLAN for all my trusted devices. I'd like the DNSBL rules to apply to that VLAN, but not the LAN.
I think the answer is to have the LAN DHCP point to a different DNS Server, but I'm not entirely sure how to go about that. I'm using UNBOUND in Resolver (not Forwarder) mode.
Thanks!
-
It's easy, just go in to the settings and chose witch interface that pfblocker shuld be applied on.
-
@djalbert I couldn't find such setting, could you please share a print screen or let's know where this setting is?
Thanks!
-
@j24 I added a NAT rule that redirects the DNS requests from the VLAN to a known DNS e.g. 8.8.8.8. It's not the best solution I hope someone can help us separate pfBlocker from the other VLANs.
-
Alguna noticia de esto?, estoy en el mismo problema
-
@ayalmaliki Firewall - pfBlockerNG - DNSBL, (Scroll down) - DNSBL Configuration, and to the right is a list of interfaces you can select or deselect.
-
@The-Party-of-Hell-No
Listo amigo ya quedo, lo que pasa es que tenia dns asignados a la vlan dejando el nativo se soluciono