OPNsense Forum

Archive => 18.7 Legacy Series => Topic started by: eblot on August 13, 2018, 11:53:13 am

Title: Unbound DNS serving OpenVPN client requests
Post by: eblot on August 13, 2018, 11:53:13 am

Hi,

I noticed that the unbound server (using the default setting) where not resolving DNS requests issued from my OpenVPN client.

nslookup ran on the VPN client site reports

** server can't find <host.domain>: REFUSED

The log file on OpnSense shows:

debug: refused query from ip4 10.0.83.6 port 56092 (len 16)

The access list shows that the physical IPv4 networks have been automatically added (2 WAN, 1 LAN, 1 local), but the VPN network (10.0.83.0/24 here) has not been added...

Adding this network to the access list solved this issue, but is this what is expected? The "Network Interfaces" was defined to "All", so I would have expected the VPN subnet to be part of theses interfaces.

Thanks.

Title: Re: Unbound DNS serving OpenVPN client requests
Post by: sco01 on August 14, 2018, 08:13:45 am

Thanks. This solved the problem for me too. I guess the OpenVPN wizard should have added it automatically.

Title: Re: Unbound DNS serving OpenVPN client requests
Post by: AhnHEL on August 14, 2018, 02:58:32 pm

Recently "upgraded" to OPNsense from pfSense and this was the only hiccup I had during the transition.   I read up on how to resolve it here in the forum, but would like to see the Wiki Tutorial updated to include this tidbit for new users like myself.

I'm sure code just hasn't been written to automagically include the custom private VPN subnet.  I'm not a programmer, so I will support the project in other ways here in the forums and monetarily as I can.