Hi,
I followed the tutorial on DNS Security to the letter and it just opened up a bunch of issues.
All I want is to have IPv4 and IPv6 available using DNSSEC. After I setup using the tutorial I had a bunch of DNS issues. Everything started resolving to IPv6 and then I had access issues. Outlook not working on the LAN. No access to Socks proxies. Seems all my IPv6 custom locations don't work because everything resolves to IPv6. I use static IP's from my ISP and they do not have IPv6 IP's available yet.
I don't know where to start. Is there a way to set overrides so certain domains are forced to resolve to IPv4? Or a way to always use IPv4, then use/fallback to IPv6 if no IPv4 DNS record exists?
As an example, if I tracert my email server domain, it returns an IPv6 address, but there is no IPv6 address on that server so I cannot get to it. Same with external proxies I access.
I did resort to disabling IPv6 on my NIC to access things, but I don't want all my users to have to do that. I do want to have access to IPv6 only sites. And I did set prefer IPv4 over IPv6.
Any help is appreciated.
Did you by any chance enable DNS64?
Quote from: Maurice on April 04, 2021, 06:27:58 PM
Did you by any chance enable DNS64?
^This
If IPv4 domain are resolving with Ipv6 address you enabled DNS64, which you should NOT do unless you specify setup NAT64, which most people should not be doing.
That was it. Thanks