Messages

1

20.7 Legacy Series / Weird DNS with Android

« on: January 20, 2021, 09:35:08 pm »

I have this weird DNS situation on my home wifi network which I'm totally confused about. Please help.

OPNsense 20.7.8-amd64. The configuration is pretty simple. Just a few rules to keep my Chinese IP cams off the internet and an openVPN connection for when I'm on the road.

Local name resolution works fine on all laptops.

But: all phones (3x Android) can not resolve internal hostnames (public hostnames ok). The weird thing is, when I go on data and connect through openVPN, the local name resolution works fine. I've switched between Dnsmasq and Unbound, and the result is the same. When I look at the Dnsmasq log file, I do see proper query responses for those hostnames.

It has worked in the past, so something has changed between now and, say, 2 months ago.

What is going on here? And why the phones don't and the laptops do?

2

General Discussion / Re: FW terminology/concepts

« on: May 20, 2020, 11:02:33 pm »

Thanks a bunch for your reply. Much appreciated! 

3

General Discussion / FW terminology/concepts

« on: May 20, 2020, 09:31:06 pm »

Hi,

Newbie here. I've set up 2 networks LAN1 and IOT. I'm trying to understand how the FW rules work. It's not entirely how I thought they would work. But that's probably just my ignorance. So before asking the stupid questions, please help me understand the following, as I couldn't find that in the documentation:

1. "LAN1 address":  Is that the ip address of the LAN1 interface at the FW?

2. "LAN1 network" is that:
a) the ip range for this interface (e.g. 192.168.10.0/24).
b) whatever is networked behind that interface? (If I have a completely different ip addresses behind LAN1, would those addresses be included in the rule as well?)

3. Do I need block rules to disable zone/interface forwarding? Or is zone forwarding blocked by default?

Thanks!
Ceaus