Hello!
I am an opnsense noob having only used it for 3-4 days. I have a couple of mikrotik routers which sit behind my perimeter 4 LAN (intel atom) mini pc. I have a dual wan set up with two pppoe WANs and two LAN networks connected via a mikrotik router in bridge firewall mode.
The mikrotik also doubles as the LAN's dns caching server. Since switching to opnsense the dns server is not able to return any results. I strongly suspect the opnsense router is blocking dns queries from any other router/pc.
My firewall rules have been applied to LAN (an interface group with LAN1 and LAN2). Standard rules which are
pass any from lan with firewall as destination
pass any from lan net to lan net
pass any from lan to load balance gateway group
I have checked firewall logs and cannot pinpoint where and how UDP 53 queries from LAN (LAN1 + LAN2) are getting blocked. To clarify I don't with to use the opnsense box as my dns server.
thanks for the help!
Never mind solved it.
Outbound NAT UDP destination port 53, translation port 53 static