Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: MrLee on November 24, 2025, 07:12:00 PM

Title: DNS Queries on my firewall from the internet
Post by: MrLee on November 24, 2025, 07:12:00 PM
I'm using OPNSense as a edge router on my network.
I have to permit most IP Traffic through to allow my devices inside to work.

In my firewall logs I see a lot of DNS Queries hitting my "inside" interface.
is there a way to specifically block this through rules?

my router is not a DNS Server for anything that I need.
Title: Re: DNS Queries on my firewall from the internet
Post by: viragomann on November 24, 2025, 09:56:17 PM
Quote from: MrLee on November 24, 2025, 07:12:00 PMIn my firewall logs I see a lot of DNS Queries hitting my "inside" interface.
is there a way to specifically block this through rules?

my router is not a DNS Server for anything that I need.
But the DNS queries are addressed to the OPNsense IP?
If so you should find out the reason for this. Maybe you're running a DHCP on OPNsense, which hands out the interface IP as DNS server?

Surely you can block DNS apart from this.
Just add a block rule for TCP/UDP with destination "This firewall" and port 53.
Text only | Text with Images