Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Potential DNS Rebind attack detected on my local network

    Scheduled Pinned Locked Moved General pfSense Questions
    62 Posts 3 Posters 5.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      comet424 @johnpoz
      last edited by

      @johnpoz
      @stephenw10
      i tested Tardis and tardis they both work and ubuntu can ping now by the register dhcp resesverations
      why didnt it work before? i do notice raspberry pi can not ping like pump but ubuntu can ping it

      its least working

      do i need to enable Experimental bit 0x20 and what exactly it do

      also i know i asked for help before etc
      apparently my bell internet the dns goes down it connects and i can ping like 1.1.1.1 ip address's but not name servers like google.ca so that manes my site to site doesnt work and nore does my vpn as its name not and ip

      the way i connecting right now is in general settings dns settings
      i set 1.1.1.1 for wan_ppoe
      as i tried the PIA VPN other 2 dns ips and i guess you need to be logged in to be able to use there dns servers.

      but when i set it 1.1.1.1 wan_ppoe i can get connected and it leaks dns... is there no way to have 1.1.1.1 wan_ppoe
      10.0.0.241 PIA_vpn

      is there no way to have both and yet keep them seperated i tried the no_wan_egrees but no didnt didnt stop cloudfare for being on the PIA vpn so then its not secure

      i know one of you said thats now how it works the way i thought where 1.1.1.1 would only be used for wan_ppoe and 10.0.0.241 would be used for PIA_vpn it doesnt keep it seperate
      but right now with my dsl dns servers down for name thats how i get internet to work unless you know IP

      is there another work around so i can set it for 1.1.1.1 as its not the first time my bell internet dns goes down for names but it connects and only ip address's work but names dont work

      johnpozJ 1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator @comet424
        last edited by

        @comet424 resolving local resources that are listed in unbound be it via dhcp registration or static dhcp registration or host overrides has zero to do with any public dns service you would forward too.. They are not going to resolve your local resources, nor should they even i you put records up there because any ns you forward or that is not actually unbound itself that returns a rfc1918 address would be a rebind and is dangerous behavior.

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 1
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.