Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Potential DNS Rebind attack detected, unable to solve it

    Scheduled Pinned Locked Moved DHCP and DNS
    3 Posts 2 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B Offline
      bjokib
      last edited by

      I have googled and tried everything it seems like, but I still can't solve this problem.

      I have a webserver on the same network as pfsense. I have port forwarded port 80 to the webserver on the internal network. Accessing the webserver from the outside works just fine, but from inside the network I only get Potential DNS Rebind attack detected error messages. And certificate errors.

      I have tried NAT reflection as suggested, adding the domain to "hosts".

      If I disable that DNS check completely it gives me an 404 error.

      Any ideas? I use the latest pfsense version.

      1 Reply Last reply Reply Quote 0
      • M Offline
        muswellhillbilly
        last edited by

        Set your internal DNS to resolve the web server to it's internal address. That way your internal hosts don't have to hit the firewall just to access a machine sitting right next to them, and you'll probably find all the other errors will resolve also.

        There have been many, many posts on this forum about problems with NAT reflection. Best to avoid it if at all possible.

        1 Reply Last reply Reply Quote 0
        • B Offline
          bjokib
          last edited by

          Sounds reasonable, I will try that.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.