DNS Resolver Infrastructure Cache Stats

Antibiotic

@johnpoz said in DNS Resolver Infrastructure Cache Stats:

Does your resolver query route out the vpn?

Could you please give a firewall rule example for this? If yes, regarding my settings where better to arrange this rule, I mean by rules order on this interface?

johnpoz

@Antibiotic wouldn't be a firewall rule, it would be a setting in your resolver on what outbound interface to use. Or it would be the default route in pfsense to send all traffic out the vpn.

Gertjan

@Antibiotic said in DNS Resolver Infrastructure Cache Stats:

could you please get 2 firewalls examples. how to make this. For first option and for me I think preferable second option.

Long story short : I can't.
I use a (just one now) pfSense, and that's the one used by the company I work for.
Experimenting with that setup, and my boss knows that it is me messing around (again), and I already lost all my "who broke the Internet to credit points" for this year.

If I have DNS issues with my ISP, I terminate the contract with them.

I prefer by far keeping my pfSense setup as simple (for me) as possible. And we all know it, we use pfSense, so it won't be simple, that why we use pfSense.

Antibiotic

@johnpoz said in DNS Resolver Infrastructure Cache Stats:

it would be a setting in your resolver on what outbound interface

Actually, I tried to do like you tell now. But anyway, cannot get some sites.
Screenshot_19-11-2024_20524_192.168.20.1.jpeg
Screenshot_19-11-2024_2051_192.168.20.1.jpeg

Could be make restart?

Antibiotic

@Gertjan said in DNS Resolver Infrastructure Cache Stats:

Long story short : I can't.
I use a (just one now) pfSense, and that's the one used by the company I work for.
Experimenting with that setup, and my boss knows that it is me messing around (again), and I already lost all my "who broke the Internet to credit points" for this year

No problem, buddy, anyaway thank you

johnpoz

@Antibiotic not sure how that is suppose to work at all, unless your redirecting dns.. you have unbound only listening on localhost.. which is 127.0.0.1, how would your clients actually ask pfsense for anything for dns..

unless you have it listening on interfaces your now showing?

Antibiotic

@Gertjan said in DNS Resolver Infrastructure Cache Stats:

If I have DNS issues with my ISP, I terminate the contract with them.

Than I have to go out of Europe))) Where freedom exist in internet)))But where exist?)))

Antibiotic

@johnpoz said in DNS Resolver Infrastructure Cache Stats:

you have unbound only listening on localhost

No , its listening on pfSense interfaces as well:

Screenshot_19-11-2024_201227_192.168.20.1.jpeg

Antibiotic

@johnpoz said in DNS Resolver Infrastructure Cache Stats:

But would prob just spin up a vpn on a vms somewhere - you can run a vps for a couple of bucks a month. I have one that is like 20 a year I can route traffic through, be more than capable of running a dns resolver for me.

What is VPS, so cheap do you use?

johnpoz

@Antibiotic A vps (virtual private server) is just an instance you run on the internet somewhere.

Its just a vm, so a full OS that you can really pretty much do anything you want on, just like some vm or server you would setup locally but its hosted somewhere on the internet.

If your looking for a lowcost vps, check out https://lowendbox.com they have all sorts of links to deals.

I show one on there currently at racknerd for like $10 a year.

check out for a few different $1 a month deals

https://lowendbox.com/blog/1-vps-1-usd-vps-per-month/

I use to have bunch of different ones in different locations, west cost, east cost, Chicago, EU (NL) - but I trimmed back and currently only one I have active is with https://buyvm.net/ which is 2$ a month currently.. Price has gone up over the years ;) I do have another server currently in NL.. But its not really a lowend box, and is more like $10 month vs a year.

The one I have currently still have, I first got back in 2016, it was $15 a year then. Now its 24.. not really bad price increases, since over the years they have increased what you got for the money.. I might have to spin up one of these 10 a year guys to just kick the ties on it. Might switch over and save myself $15 a year ;) hehehe

If I needed one in a specific location for something I was testing, the great things about these is you can have them spun up and active normally in a few minutes.

Antibiotic

@johnpoz said in DNS Resolver Infrastructure Cache Stats:

Its just a vm, so a full OS that you can really pretty much do anything you want on, just like some vm or server you would setup locally but its hosted somewhere on the internet.

But in case of planning to use this VPS as private DNS server and VPN for my home net. Is it important to choose server as close to my real location or this not so important regarding my purposes. Second, this VPS have a more less easy setup of DNS server and VPN. I mean these procedures well instructed usually? or have some auto scripts to do on VPS side?

Antibiotic

@johnpoz said in DNS Resolver Infrastructure Cache Stats:

If your looking for a lowcost vps, check out https://lowendbox.com they have all sorts of links to deals.

Also, if planning use as DNS server and VPN server, how much need RAM and CPU to be not overpay and do not have slow connections?

johnpoz

@Antibiotic dns would require pretty much nothing.. you could run that on a pi zero.. vpn on the other hand would depend on how fast of connection want/have and how much traffic your actually going to push through it.