DNS and Multi WAN issues (still)

eric

Hey guys, I have asked this a few times, and well now I really need it to work.

I have a Dual WAN setup like this:
Wan1 - Linksys router (10.10.10.1) -
                                                - pfsense
Wan2 - Linksys router (10.10.11.1) -

Both linksys routers get their address via DHCP.  Pfsense is set static on both interfaces, (10.10.10.2 & 10.10.11.2). 
In System->general my DNS servers are 10.10.10.1 and 10.10.11.1, and the override button is not checked.
I have setup two static routes, Interface WAN, Network 10.10.10.1/32, Gateway 10.10.10.1 (doen't seem right to me…) and Interface WAN2, Network 10.10.11.1/32, Gateway 10.10.11.1.  Also tried Network 10.10.10.0/24 and 10.10.11.0/24, that didn't work either.

If I turn on the DNS forwarder with a rule saying use my loadbalancer pool I get no DNS whatsoever.  But if I change the gateway to my default gateway my DNS comes back. 
I have read, and read, and asked, and read and I can not figure this out.
Does anybody have any ideas?  Did I miss any information needed? Please help.

Thanks
-Eric

-edit-
Forgot to say, if I try to use Diag->ping www.google.com it works, when the static routes are 10.10.10.0/24 and 10.10.11.0/24

sullrich

FAQ.

You need to add static routes for each dns server to forward the requests out the correct pipe.

eric

Is that not what I did?
the DNS servers are 10.10.10.1 and 10.10.11.1 (the linksys routers do dns forwarding…) and the static routes are interface wan, network 10.10.10.1/32, gateway 10.10.10.1 and interface wan2, network 10.10.11.1/32, gateway 10.10.11.1.

Is there something wrong with this?

hoba

In your special case you can remove the static routes for the dns servers as they are directly in the subnet of your WAN interfaces. Does it work then?

lothar

Ive got the same problem I guess. When I switch from Cable to ADSL connection, I lost DNS resolving….

Ping works but no resolving...

I tried to put DNS server in /var/etc/nameserver_dc0, it changes nothing...

OK Some Explanation ???

ADSL = dc0 ----> /var/etc/nameserver_dc0 (I guess its for ADSL DNS servers)
CABLE = fxp0 ----> /var/etc/nameserver_fxp0 (I guess its for CABLE DNS servers)

When CABLE goes down (fxp0) it should use ADSL (dc0) ?? So why resolving is not working even if in these 2 files, dns servers are written ????

I tried with the version 1.0.1 and now with BETA4 but its still the same ...............

I would be very grateful if someone got an idea.

sullrich

@lothar:

Ive got the same problem I guess. When I switch from Cable to ADSL connection, I lost DNS resolving….

Ping works but no resolving...

I tried to put DNS server in /var/etc/nameserver_dc0, it changes nothing...

OK Some Explanation ???

ADSL = dc0 ----> /var/etc/nameserver_dc0 (I guess its for ADSL DNS servers)
CABLE = fxp0 ----> /var/etc/nameserver_fxp0 (I guess its for CABLE DNS servers)

When CABLE goes down (fxp0) it should use ADSL (dc0) ?? So why resolving is not working even if in these 2 files, dns servers are written ????

I tried with the version 1.0.1 and now with BETA4 but its still the same ...............

I would be very grateful if someone got an idea.

I answered this earlier in this thread.  You need to add 1 dns server from each isp and then create the static routes manually in the GUI.

You should never edit files in the filesystem.. They are all auto generated.

lothar

Can u tell me what does it looks like ? the static routes ???

Ty very much for uR help. PLiZ pliZ PliZ :D

hoba

http://doc.pfsense.org/index.php/Multi-Wan/Load-Balancing#Setting_up_DNS_for_Load_Balancing

lothar

TY so much, it works :D U r just a genius TYTYTYTY

eric

@hoba:

In your special case you can remove the static routes for the dns servers as they are directly in the subnet of your WAN interfaces. Does it work then?

I will attempt to try this later on tonight.
Thanks hoba

eric

hey everyone
I have got my network setup as i described earlier, except i have use ISP dns servers, not my linksys routers,  and all is working properly on the LAN, however, if i try to loadbalnce on an OPT interface, I lose DNS resolution.  DNS forwarder is turned on.
My static routes are fine, traceroute shows proper gateway, netstat -rn shows both dns servers properly.  and like i said everything works on the LAN interface but not the OPT.  Any ideas on that one?

cmb

@eric:

hey everyone
I have got my network setup as i described earlier, except i have use ISP dns servers, not my linksys routers,  and all is working properly on the LAN, however, if i try to loadbalnce on an OPT interface, I lose DNS resolution.  DNS forwarder is turned on.
My static routes are fine, traceroute shows proper gateway, netstat -rn shows both dns servers properly.  and like i said everything works on the LAN interface but not the OPT.  Any ideas on that one?

What version? This sounds a lot like a multi-WAN NAT bug that was fixed in 1.2, if you're not running 1.2b1 you should.

eric

i am using version 1.2-BETA-1-TESTING-SNAPSHOT-04-30-07

eric

ok i updated to 1.2-BETA-1-TESTING-SNAPSHOT-05-02-07 and i'm still having issues.  no DNS on any OPT interface..

eric

nobody have any ideas on what might be wrong? ???

hoba

Must be a configuration issue. It's working fine here and for a lot of other people. Try to rebuild from scratch following closely the documentation.

eric

OK I have rebuilt from scratch now like 10 times following the guide to the word, and still having the same issue.  DNS resolution does not work on the OPT interfaces with the DNS forwarder turned on when the gateway is set to the load balancer.  If i set the gateway to the default then DNS works fine.  On the LAN interface DNS works fine with the load balancer.. I don't know what to do.  Its driving me crazy.

I am at a total loss for what to do.  It seems like this should be working. I have even gone to the lengths of replacing all hardware, except for my 4 port NIC.  That NIC has the LAN and 3 OPT interfaces

sai

Eric, post your configs. Preferably screen shots of your loadbalancer and lan rules. Your network diagram with ip addresses would also be useful in case of misunderstanding.

eric

OK, screen shots of LAN rules, OPT rules, LB rules, LB status, gliffy diagram of layout, config file with passwords errased

anything else? i'll be happy to post, i would really like this to work properly.

Thanks guys
-Eric

PS, files to big to upload all of them.. so i posted them on my local webserver.

http://artknapp.ca/lanrules.PNG
http://artknapp.ca/lbrules.PNG
http://artknapp.ca/lbstatus.PNG
http://artknapp.ca/optrules.PNG
http://artknapp.ca/pfsense.png
http://artknapp.ca/config-router.artknapp-20070509032355.xml