One DNS per interface
-
I'm stuck while I'm trying to setup my new 4-Port device. One port is for WAN the others are LAN and one is a DMZ.
DMZ has a separate gateway and relies on the VPN, as described in the NordVPN tutorial 2.5
LAN ports have no gateway, so they use the default gateway on WAN, which relies on another NordVPN DNS too. If possible, I would change the LAN ports to a public DNS but I don't know how I setup a "DNS per Interface policy".
so far and interestingly enough any site except google.com can be resolved from all the all interfaces. However, only the DMZ network resolves google.com successfully.
What am I missing here?
-
@baumkuchen I'm not sure Unbound supports querying different DNS servers based on the client, much less that this functionality would be exposed in the pfSense GUI.
What you can do is assign different DNS servers to clients using DHCP.
-
Like @paoloposo mentioned, your easiest solution here is going to be using DHCP to give each client on a different subnet a different public DNS server, otherwise they are using pfSense as their resolver which is going to use whatever you set as the upstream provider in pfSense itself (in this case the one over the VPN).
-
That put me in the right direction!
Thank you gentlemen.
