OPNsense Forum
Archive => 17.7 Legacy Series => Topic started by: DG40 on January 01, 2018, 05:24:05 pm
-
Hello and Happy New Year.
I'm a long time user of M0n0wall, pfsense and now moving to OPNsense.
I've had this problem for a long time and just need to get it figured out. No issues using dnsmasq but would like to use unbound instead.
My setup is very simple..RemoteOffice(192.168.50.x/24) is connecting to HeadQuarters (10.0.0.0/16) with VPN. Routing is fine as I can ping and connect to all HeadQuarters Office IP's,servers,switch etc. from RemoteOffice computers and OPNsense.
I simply enter our HeadQuarters dns server into Unbound Domain Overrides for the HeadQuarters domain (MyCorpNet.local 10.0.0.53). results unknown host on any query to this domain at RemoteOffice.
Host overrides work fine but too many entries to manage
I can query the HeadQuarters DNS fine when using nslookup and setting the server to 10.0.0.53 at HQ side of VPN.
What am I missing? I've tried changing various settings without success.
BTW this is a brand new install with latest updates as of this posting.
Any help or work arounds would greatly be appreciated.
-DG
-
You should check if your remote is allowed to query the DNS server. You may get a Forbidden error.
-
All equipment at RemoteOffice can query the HQ DNS. Well, except unbound.
-
we had this a while ago as well. The problem ist that unbound will by default send all replies out on all interfaces. We set the outbound interface to the LAN interface (while still listening on ALL). This routes the domain-overrides through the Tunnels and all others out the WAN interface.
-
That did it! 8)
Thank you so very much. Been fighting with that for a long time. I think this might be the first time it's been
documented.