OPNsense Forum

Archive => 18.1 Legacy Series => Topic started by: bigops on April 05, 2018, 03:07:28 am

Title: Bug in DNS resolution?
Post by: bigops on April 05, 2018, 03:07:28 am

Based on the post https://forum.opnsense.org/index.php?topic=7773.0 I was trying to test the DNS resolution using unbound.  It seems there is a bug which does not take into account the setting "Do Not Use DNS Forwarder for the firewall" if there are any DNS servers configured under DNS servers.  I am attaching a couple of screenshots which shows the query being responded by the configured servers.  If all the servers are removed from the configuration then it behaves as expected

Title: Re: Bug in DNS resolution?
Post by: elektroinside on April 05, 2018, 06:04:15 am

It works exactly as it should.

This is the help text under that option:
"By default localhost (127.0.0.1) will be used as the first DNS server where the DNS Forwarder or DNS Resolver is enabled and set to listen on Localhost, so system can use the local DNS service to perform lookups. Checking this box omits localhost from the list of DNS servers."

This means your queries go directly to the configured DNS servers, and will not go through the DNS resolver (Unbound) or DNS forwarder (dnsmasq). But they are going out some way or another. There's no bug anywhere :)