Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Site to Site Domain forwarding packets not being sent

    Scheduled Pinned Locked Moved DHCP and DNS
    2 Posts 1 Posters 392 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D Offline
      ddbnj
      last edited by ddbnj

      I have a multiwan setup with failover VPN site to site tunnels. DNS resolver is set up in forwarding mode. Everything is working on both sites except for domain overrides.

      OSPF is running and providing routes. I can ping both DNS servers across the tunnels. If I search the hostname (FQDN) on the local DNS server, it works. When I try from the remote DNS server it times out. DNS resolver status confirms the domain override tunnel has timed out.

      Packet capture for ports 53 and 853 do not show any packets being sent from the local pfsense server across the tunnel. Firewall rules for the tunnel are pass all.

      Any idea why the local DNS resolver (unbound) isn't sending requests to my domain override?

      Thanks,

      Devan

      D 1 Reply Last reply Reply Quote 0
      • D Offline
        ddbnj @ddbnj
        last edited by

        @ddbnj

        Confession: I had a floating rule messing up DNS forwarding.

        Hope this helps anyone else.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.