Hello all,
I've hit a wall trying to understand what is going on.
I do not use the firewall for DNS or DHCP. However, when I do a DNS query from a client on the LAN, the originating IP address of the DNS request is the WAN IP on the WAN interface.
I have a rule on the LAN interface that should be blocking these DNS queries, but I do not see the LAN source address at all and is not being blocked.
Thanks folks!
Quote from: wewyweww on December 28, 2025, 06:53:00 AMI do not use the firewall for DNS or DHCP. However, when I do a DNS query from a client on the LAN, the originating IP address of the DNS request is the WAN IP on the WAN interface.
If we are talking IPv4 then all traffic is NAT-ed (https://en.wikipedia.org/wiki/Network_address_translation) to the WAN IP, including DNS queries.