Resolving dns in another network
-
Hi,
I have a PFSense vm connected to two networks (Sandbox1 and Sandbox2) and a WAN interface. This is for the sandbox1 network, and for sandbox2, I have likewise.
What I want to do is resolve dns names/IPs in sandbox2 (which has a full DNS environment) from sandbox1 (which also has a full dns environment). How can I achieve this exactly?
-
What do you mean by 'full DNS environment'? Is pfSense handling DNS or is another server in each LAN doing it?
-
@KOM:
What do you mean by 'full DNS environment'? Is pfSense handling DNS or is another server in each LAN doing it?
Apologies I was going to add this to my post.
Each LAN has two Windows DNS servers with forwarders set. So I'm looking to have the following flow of DNS traffic:
To resolve an nslookup request, Sandbox1: Server > DNS Server > Sandbox1PFSense > SandBox2PFSense
-
Assuming you already have firewall rules in place to keep these LANs from talking to each other, you would create a single rule for your sandbox1 LAN so that the IP address of the DNS server in sandbox1 can talk to the IP address of the DNS server in sandbox2 LAN on tcp/udp 53. Then you add the DNS server in sandbox2 as an upstream server for your DNS server in sandbox1.
