DNS not resolving



  • I am trying to set up a pfsense router that is running FreeBSD 7.2 and pf filter for the firewall.

    we have an IP of 97.89.176.86 /30
    gateway 97.89.176.85
    netmask 255.255.255.252

    I can ping the gateway from the router but I do not get DNS resolution.  I cannot ping other IPs from the router.

    When we run:

    netstat -r

    Our network devices display very slowly or time out.

    When we run
    I am trying to set up a pfsense router that is running FreeBSD 7.2 and pf filter for the firewall.

    we have an IP of 97.89.176.86 /30
    gateway 97.89.176.85
    netmask 255.255.255.252

    I can ping the gateway from the router but I do not get DNS resolution.  I cannot ping other IPs from the router.

    When we run:

    netstat -r

    Our network devices display very slowly or time out.

    When we run

    netstat -rn

    The routing table is very promptly and correctly displayed.

    The gateway has the flags:

    97.89.176.85 UGW
    97.89.176.86 UHLW

    I think the DNS resolution is not being correctly performed.  I remember this happening previously about 4 years ago it there was something miss configured on the private LAN but I can't find the previous solution to fix the problem.

    Any suggestions?

    Thanks in advance.

    Sam Bowen
    http://www.openmedsoftware.org
    netstat -rn

    The routing table is very promptly and correctly displayed.

    The gateway has the flags:

    97.89.176.85 UGW
    97.89.176.86 UHLW

    I think the DNS resolution is not being correctly performed.  I remember this happening previously about 4 years ago it there was something miss configured on the private LAN but I can't find the previous solution to fix the problem.

    Any suggestions?

    Thanks in advance.

    Sam Bowen
    http://www.openmedsoftware.org



  • It isn't just DNS - you say you cannot ping upstream of your gateway either, correct?  Can you see the pfsense WAN IP from outside?  What is your DNS set as?



  • It isn't just DNS - you say you cannot ping upstream of your gateway either, correct? No, I cannot.

    Can you see the pfsense WAN IP from outside? No, I cannot.

    What is your DNS set as?  From the pfSense firewall:

    cat resolv.conf

    nameserver 24.158.63.9
    nameserver 24.158.63.8

    These are the correct DNS servers as reported by Charter Communications the ISP provider.

    I can ping the gateway machine from the router.

    I cannot ping the WAN IP (97.89.176.86) from the outside.

    ping 97.89.176.86
    PING 97.89.176.86 (97.89.176.86) 56(84) bytes of data.
    ^C
    –- 97.89.176.86 ping statistics ---
    4 packets transmitted, 0 received, 100% packet loss, time 2999ms

    I can ping the gateway machine from the outside.

    ping 97.89.176.85
    PING 97.89.176.85 (97.89.176.85) 56(84) bytes of data.
    64 bytes from 97.89.176.85: icmp_seq=1 ttl=50 time=42.2 ms
    64 bytes from 97.89.176.85: icmp_seq=2 ttl=50 time=40.8 ms
    64 bytes from 97.89.176.85: icmp_seq=3 ttl=50 time=41.9 ms
    ^C
    --- 97.89.176.85 ping statistics ---
    3 packets transmitted, 3 received, 0% packet loss, time 2003ms
    rtt min/avg/max/mdev = 40.807/41.669/42.210/0.616 ms

    I can ping the DNS servers from outside the network:

    ping 24.158.63.9

    PING 24.158.63.9 (24.158.63.9) 56(84) bytes of data.
    64 bytes from 24.158.63.9: icmp_seq=1 ttl=241 time=35.9 ms
    64 bytes from 24.158.63.9: icmp_seq=3 ttl=241 time=34.9 ms
    64 bytes from 24.158.63.9: icmp_seq=4 ttl=241 time=35.9 ms
    64 bytes from 24.158.63.9: icmp_seq=5 ttl=241 time=35.1 ms
    64 bytes from 24.158.63.9: icmp_seq=6 ttl=241 time=35.5 ms
    ^C
    --- 24.158.63.9 ping statistics ---
    6 packets transmitted, 5 received, 16% packet loss, time 5005ms
    rtt min/avg/max/mdev = 34.963/35.513/35.974/0.450 ms

    ping 24.158.63.8

    PING 24.158.63.8 (24.158.63.8) 56(84) bytes of data.
    64 bytes from 24.158.63.8: icmp_seq=1 ttl=241 time=35.4 ms
    64 bytes from 24.158.63.8: icmp_seq=2 ttl=241 time=34.9 ms
    64 bytes from 24.158.63.8: icmp_seq=3 ttl=241 time=34.5 ms
    ^C
    --- 24.158.63.8 ping statistics ---
    3 packets transmitted, 3 received, 0% packet loss, time 2001ms
    rtt min/avg/max/mdev = 34.534/34.992/35.488/0.419 ms

    I cannot ping the DNS servers from inside or from the router.

    DNS1 24.158.63.9
    DNS2 24.158.63.8

    Sam Bowen
    http://www.openmedsoftware.org/



  • well inability to ping your WAN IP from outside isn't an problem per-se, since that is disabled by default.  can you post your interface config, NAT rules, etc…


Log in to reply