Hi,
I have a small lab setup as follows.
A Windows Server with DNS service (192.168.31.165/27)
An OPNSense Firewall (192.168.31.131/27)
An ESXi Server (192.168.31.197/27)
Both the Windows Server and ESXi host are in different subnets and connected to the Firewall.
If I do an nslookup from ESXi via SSH I get the DNS resolved results both ways as in Image 1.
But if I enter the IP address in the URL of the browser to access the ESXi Web GUI the IP address does not change to the name of the ESXi as in the DNS A Record (Image 2). How do I achieve having the browser change the IP to name when opening the ESXi. How can I achieve this with OPNSense.
I did a DNS diagnostic in the OPNSense as well, DNS resolves fine both forward and reverse (Image3 and 4).
Thank You
Quote from: tryllz on January 04, 2021, 09:41:47 PM
How do I achieve having the browser change the IP to name when opening the ESXi. How can I achieve this with OPNSense.
That's not possible and correct behaviour of your browser. If your browser replaces the ip address by the fqdn an attacker could trigger a man-in-the-middle attack a redirection to a malicious site when connection to a HTTPS site.
Thanks for clarifying that, I was under the impression DNS should resolve, that too in the browser..