OPNsense Forum
English Forums => Zenarmor (Sensei) => Topic started by: Anael on November 02, 2020, 10:33:03 am
-
Hi there,
I can't find a way to resolve local hostnames.
-
Hi Anael,
Did you set the settings on Configuration - Reporting & Data - DNS Enrichment for Reports? What is your DNS Server?
-
Yes and i also tick : Use OPNsense Host aliases for DNS enrichment
I put all my hostname in aliases with network and /32 by ip and it's the same.
Actually i use remote (1.1.1.1) dns in Sensei config meanwhile i use local (adguardhome) dns server. I will replace 9.9.9.9 by my local dns and see how it goes.
-
If you use Services -> Unbound DNS you have the option to tick
DHCP Registration
which has the following info text:
If this option is set, then machines that specify their hostname when requesting a DHCP lease will be registered in Unbound, so that their name can be resolved.
Maybe that works for the reporting, too?
-
Will try. I didn't use unbound
-
Hi @Anael,
Please send a bug report from the upper right corner of Sensei GUI by selecting all checkboxes. The team will look into the logs.
-
Will do it when i'll be back at home. Thanks !
-
Coming back to you as Salih from the support find the problem.
We had to use 192.168.1.3 and not 102.168.1.3/32 for aliases or it won't work.
If that call help ppl.. ;)
-
Hi,
I experience a similar issue. My DNS Server is a domain controller, so I decided to enter the IP Addresses of two of my DC/DNS servers to query. As I am not using the dns server locally on opnsense that should be sufficient.
Still I see no DNS names.
Since I am using the free edition, is the feature to query a remote DNS server a subscription based feature only?
amichel
-
in System: Settings: Administration
try to tick DNS Rebind Check
-
That worked !
Thank you
amichel
-
Same here - fully updated system in Sept. 2021 - Thanks!
-
Hello,
even if it's an old post, I'll ask my question here.
I am using Zenarmor (1.16.4 - Mar 8, 2024 3:30 PM) and I have the problem that the IP addresses of the local systems are not resolved in the report.
I use AdGuard home on a RaspberryPI as DNS server and have set up UnboundDNS in OPNsense.
If I perform an nslookup on an IP address from the report via my PC, for example, the IP address is resolved, but this does not happen in the report.
The following options are activated:
Zenamor - Settings - DNS Enrichment for Reports
The Adguard IP was added
System - Settings - Administration - DNS Reping Check (disabled)
At first I thought it was a premium function that is not available in the free version. But when I read through the article here, it should also work in the free version or am I wrong?
As an alternative I could put OPNsense Host aliases, they will be resolved, but if possible I would like to avoid that.
Best regards
Anthony
-
Does anyone have any hints?
-
Hi,
It could help to look into Zenarmor log files. Can you share a report by following the instructions in the below link.
https://www.zenarmor.com/docs/support/reporting-bug
-
Hello,
even if it's an old post, I'll ask my question here.
I am using Zenarmor (1.16.4 - Mar 8, 2024 3:30 PM) and I have the problem that the IP addresses of the local systems are not resolved in the report.
I use AdGuard home on a RaspberryPI as DNS server and have set up UnboundDNS in OPNsense.
If I perform an nslookup on an IP address from the report via my PC, for example, the IP address is resolved, but this does not happen in the report.
The following options are activated:
Zenamor - Settings - DNS Enrichment for Reports
The Adguard IP was added
System - Settings - Administration - DNS Reping Check (disabled)
At first I thought it was a premium function that is not available in the free version. But when I read through the article here, it should also work in the free version or am I wrong?
As an alternative I could put OPNsense Host aliases, they will be resolved, but if possible I would like to avoid that.
Best regards
Anthony
This will work only for licensed versions, starting from HOME. If you have the free, you need to have the OPN use the Allies as is in their documentation.
https://www.zenarmor.com/docs/configuring/configuring-dns-for-reports
You may click the Use OPNsense Host aliases for DNS Enrichment toggle button on the DNS Enrichment for Reports page to enable or disable the OPNsense Aliases for DNS Enrichment feature.
Regards,
S.
-
Thank you very much. I am using the free version. So it is a limitation of my license.
-
You are welcome,
When you buy a subscription, you will be able to toggle "Real-time Reverse DNS Queries". This basically will then use your configured DNS in Zenarmor.
Addition to payed license you will get:
Device tab
Activity explorer tab
Regards,
S.
-
It's done. It does not translate the IP address with the host, but creates new entries that I did not see in my top 10.
For my better understanding. I have now created a firewall alias of type - Hosts(s) with the corresponding IP as content.
The option "Use OPNsenes Host aliases for DNS enrichment" is active. However, I still see the IP address in the report. Do I need to update anything else?
-
I have the free version running and some of my local IPs resolve but not others. Its strange. I don't have any aliases setup.
Does this happen for anyone else?
-
It's done. It does not translate the IP address with the host, but creates new entries that I did not see in my top 10.
For my better understanding. I have now created a firewall alias of type - Hosts(s) with the corresponding IP as content.
The option "Use OPNsenes Host aliases for DNS enrichment" is active. However, I still see the IP address in the report. Do I need to update anything else?
Can you show us your Alias configuration for a specific host?
If you have "Use OPNsenes Host aliases for DNS enrichment" enabled and set 1 host Alias per IP - Name. Zen should take the "Name" as hostname and match it to the IP.
Regards,
S.