Pinging but not browsing - Pfsense
-
There are quite a lot of different posts on this matter, but I cannot find a way of fixing this issue. So I have my linux laptop running a VM instance of Pfsense (bridge mode and with intnet). Pfsense is running with WAN(192.168.0.102/24) and LAN (10.0.2.2/24). My laptop is connected wirelessly to my home router at 192.168.0.1 and can properly access the pfsense dashboard using 192.168.0.102 since I have a WAN rule that allows this.
I am also running also a VM ubuntu instance (using intnet) and can properly access using 10.0.2.2 the pfsense dashboard etc. From this instance, I can ping 8.8.8.8 or any other ip address, but cannot ping hostnames (cannot resolve...). Also, something which I dont understand is, how can I ping 172.217.7.227 which is google.co.uk, but cannot access it as an IP via mozilla browser.
I have an antilockout LAN rule (which was already there by default), and and IPV4/V6 any to any rules.
Any clue?
-
So the internal client has no DNS. What is it using for DNS?
Can pfSense itself resolve anything? From Diag > DNS Lookup for example.
Is the Unbound service running correctly in pfSense?
Steve
-
@stephenw10 I tried dns lookup through pfsense as u suggested, and it does successfully resolve hostnames.
-
On every listed server?
So what DNS is the client using?
Steve
-
@stephenw10 how do I find that out?
-
You can run something like
dig google.com
and it will show what servers gets the result from. But if you're running systemd, as it slowly takes over everything, it will probably just show localhost. In which case run something likeresolvectl status eth0
Steve
-
@stephenw10 running dig google.com from the Ubuntu VM instance syas "connection timed out; no servers could be reached". By the way, I am running a testing vm instance, its not the full OS installed, I dont know if that makes a difference, I dont think it should.
-
Is the client using dhcp? If not what DNS servers did you set?
If it's static and you didn't set any there's your problem.
If it's dhcp it should pull the pfSense LAN IP for DNS and you never answered my question about Unbound so I'll assume that is running correctly.
Steve
-
@stephenw10 Hi steve, I dont know what the "unbound service" is. Also, how do i check if the client is using dhcp? By client im guessing you are refering to my ubuntu instance right? I have set 8.8.4.4 and 8.8.8.8 as DNS servers during the set up wizard of pfsense.
I have tried out something right now, and the results are quite weird. So.. I have "enabled DHCP server on LAN interface" through the pfsense conf. and when I try to use an ip address like 157.240.14.35 directly in the browser, it resolves it to www.facebook.com but it does not connect to it, saying that it has trouble finding that site.
-
@stephenw10 Ive removed the ubuntu instance, and restarted it, made sure to have DHCP running on pfsense and for some reason it does work now. I can access the internet.
-
Ok, so the Ubuntu VM probably wasn't using DHCP before and didn't have any servers set so it couldn't resolve.