Hi all,
I have a working setup using BIND DNSBL and MultiWAN (with one GW at this stage). All works correctly however adding a second GW (same tier) breaks DNS unless I set System -> General -> DNS per GW. Unfortunately, setting those ignores my BIND setup.
Is there some trick I'm missing or do I need to create firewall rule redirecting the hosts from System -> General -> DNS per GW to my BIND. For BIND I use a different set of servers.
L.
Multiwan only works with trffic going through the Firewall, bind is local initiiated traffic and only works via default gateway
Is there a way to push this traffic thru firewall?
(Sorry if I'm asking dumb questions, new to PF.)
No, because the Service runs on the Firewall
Quote from: lzamel on July 10, 2020, 05:56:36 PM
Is there a way to push this traffic thru firewall?
Where is your bind instance running? Is it on the firewall itself or is it behind it, on your network?
- If it's on the OPNsense device, did you work through Step 5 in the Multi-WAN setup here https://docs.opnsense.org/manual/how-tos/multiwan.html (https://docs.opnsense.org/manual/how-tos/multiwan.html) to manage local DNS traffic?
- If it's behind it, did you set similar firewall rules to ensure DNS requests from your LAN bind server go out the way you want?
I did. Step 5 rule matches LAN traffic, it will not match traffic originating from firewall itself. As there is no way to force it thru PF it cannot be used to modify GW.