Text only | Text with Images

OPNsense Forum

Archive => 20.1 Legacy Series => Topic started by: hushcoden on June 02, 2020, 07:10:20 PM

Title: DNS servers for kids iPad
Post by: hushcoden on June 02, 2020, 07:10:20 PM
I'm running the latest release 20.1.7, using Unbound with Quad9 DNS servers, I've setup my kids iPad with a static lease and Cleanbrowsing DNS servers: is there a way to double-check that my kids iPad are actaully using Cleanbrowsing DNS servers?

Tia.
Title: Re: DNS servers for kids iPad
Post by: fabian on June 02, 2020, 08:14:52 PM
Firewall logs as long as DoH is not used. With custom DoH servers, you will have a hard time.
Title: Re: DNS servers for kids iPad
Post by: hushcoden on June 02, 2020, 09:31:17 PM
I actually tried the log filtering by IP address but neither live view nor plain view show me a single entry...
Title: Re: DNS servers for kids iPad
Post by: fabian on June 03, 2020, 06:52:30 AM
You need to log matches
Title: Re: DNS servers for kids iPad
Post by: hushcoden on June 03, 2020, 09:34:03 AM
I did try what in the documentation here: https://docs.opnsense.org/manual/logging_firewall.html

iPad IP address is 192.168.0.4 so I entered in the filter box  WAN.*:53.*192\.168\.0\.  but still i get no results...
Title: Re: DNS servers for kids iPad
Post by: hushcoden on June 03, 2020, 10:24:29 AM
and tried also WAN.*:853.*192\.168\.0\.
Title: Re: DNS servers for kids iPad
Post by: Steve28 on June 03, 2020, 03:21:19 PM
The 192.168.*.* address will not show on the WAN interface because NAT will have already converted it to your WAN IP before the filters. You need to look at the LAN interface.

OR

Is there a site you know should be blocked?  Put your kids safari in private mode (to keep it out of the history) and try to go there.  Then try from another computer.
Text only | Text with Images