Messages

1

Documentation and Translation / Re: AdGuard Home setup guide

« on: January 28, 2022, 05:08:28 pm »

I'm not sure you followed this tutorial. The original post, page 1 shows it using an ip in System:Settings:General DNS servers field. Looks like you are trying to do it differently.
I use Unbound and Adguard home. I also have that field setting and my /etc/resolv.conf only has "domain mydomain" in it. As expected.
Where are you issuing your dig command, a client or the firewall device?
Where is adguard running, another machine?
How are your clients being pointed to that_machine:53530 , dhcp?

Thanks for your answer.

I did follow the tutorial as it says the following:
On OPNsense:
System -> General Setup
Set '8.8.8.8' as DNS server (Or whatever DNS you would like as a backup, if you only want AdGuard you can remove all DNS servers from this list and leave it blank)
Untick: Do not use the local DNS service as a nameserver for this system
This way by default OPNsense will use itself (127.0.0.1) as the resolver which we want.

For me these instructions result in a nonfonctionning changelog access.

I am doing the drill commands directly from the shell of the OPNsense box
Adguard is running as a plugin of OPNsense
The clients have no issues regarding the local DNS, they are getting their IPSs and DNS through OPNsense DHCP server yes.

In the end of the day, my issue isn't really that bad as it only means that OPNsense itself will use a different DNS.

@yeraycito: I suggest you try to reproduce my config as apart for my small issue everything is working flawlessly (it's a clean install)

2

Documentation and Translation / Re: AdGuard Home setup guide

« on: January 25, 2022, 10:21:23 am »

Hi, I followed this tutorial but having a empty System:Settings:General DNS servers results in this error on the host:

dig google.com

Code: [Select]

Error: error sending query: No (valid) nameservers defined in the resolverI have also a time out error on OPNsense update check.

Could anyone with a working adguard + unbound configuration share their `/etc/resolv.conf`?

The only way to make it work for me is to set a fallback DNS servers in System:Settings:General DNS servers.

Here is my whole configuration DNS wise if it can help troubleshooting my issue:

System:Settings:General:

Code: [Select]

DNS Server: empty
Do not use the local DNS service as a nameserver for this system: CHECKED

Services:DHCPv4:[LAN]:

Code: [Select]

DNS servers: empty

Unbound DNS:General:

Code: [Select]

Listen Port: 53530
Enable: CHECKED
Enable DNSSEC Support: CHECKED
Register DHCP leases: CHECKED
Register DHCP static mappings: CHECKED
Local Zone Type: transparent

Adguard Home interfaces when initialling config were set to LAN only

Adguard:DNS settings:

Code: [Select]

Upstream DNS servers: 127.0.0.1:53530
Bootstrap DNS servers: 127.0.0.1:53530


3

General Discussion / Adguard home and unbound

« on: January 23, 2022, 12:42:05 am »

Hey, I need some help regarding DNS configuration:
I did a full reinstall and decided to install adguard directly as a plugin alongside unbound.I have followed this tutorial: https://forum.opnsense.org/index.php?topic=22162.0

I had it more detailed originally but it's fixed =>

Solved: ok I had to add unbound as a upstream dns server.

4

General Discussion / How to dump wan dhcpv6 options from isp router to get ipv6 working

« on: September 23, 2021, 08:45:40 am »

Hi everyone, I am trying to get dhcpv6 to work (my isp just switched me to cgnat... )

I've been following this tutorial: https://docs.opnsense.org/manual/how-tos/sfr_red_fr_ftth.html with success regarding ipv4 but for some reason, ipv6 is broken.

I'd like to confirm I am sending the right options by dumping dhcpv6 communication from the isp router.

I tried using `tcpdump -i eth0 udp port 546 or 547 -n -vv ` on OPNsense , I am seeing some handshake but nothing regarding options.

I'll try later with Wireshark by plugging the isp router directly to a Linux machine.

Is there anything I am missing? Why isn't tcdump showing me the sent options?

I have not ever played with ipv6, I see that I am receiving two ipv6 dns address and that's it.

Cheers!