Messages

OMG .... Thanks for this response!!!

Yes, I understand diff between dns & dhcp.

NO, I was unaware that the advanced settings had "interface NO DHCP" option. Of course all my vpn interfaces were listed there.  As soon as I removed them, guess what....? Problem solved. 

Not sure how those got set as I never used the advanced interface option.  Don't recall seeing any description of advanced interface options in opnsense
 documentation.

As soon as I removed the vlans from "interface no dhcp" dns/dhcp started working.

THANK YOU!!!

D

Intersting.  I only see 3 rules created by dnsmasq in the LAN vlan.  No rules are created in any of the other vlans.  Are you using static addresses or only dhcp?

FWIW, I migrated from ISC->KEA and now trying to get dnsmasq to work.  Not sure what is preventing fw rules from being created w/dnsmasq.

@Drinyth - are you running multple Vlans.  If you disable dnsmasq, re-enable kea dhcp4 does kea re-insert fw rules in vlans? After resetting back to dnsmasq, does dnsmasq reinstall fw rules on vlans?

D

I am confirming that as well.  I see no blocks in the logs.  Have fully opened Vlan and Lan (pass in/out), tried to create FW rules for vlan manually.  Seems like Dhcp does NOT work if KEA/Unbound were used previously.  Any other ideas to try?

D

Just confirmed that KEA creates 2 firewall rules in all vlans and lan.

When stopped, and dnsmasq started, dnsmasq is only creating 3 rules in LAN.  dnsmasq is NOT creating rules in other vlans.
D

The rules are only being created in LAN, no other vlan gets rules generated!

D

1) I would like to move away from Unbound/KEA to dnsmasq as it SHOULD BE a simpler setup, simpler to maintain and use less resources (i.e. more efficient). Further, it should be more understandable for people doing maintenance who are less experienced.

2) Using dnsmasq as exclusive provider for dns/dhcp (with or without VLans) should be a supported configuration

3) With respect to Firewall rules, activating the firewall rules in setup only creates rules for LAN, none of the VLans.  I have added PASS rules for in and out on ports 67/68, on the vlans, but still no dhcp.

**It would be nice if the config option to generate fw rules would do so for all enabled interfaces.  Not sure why it only creates rules for LAN.

D

I have a relatively simple network consisting of:

x.x.1.x LAN
x.x.2.x VLan 1
x.x.3.x VLan 2
x.x.4.x VLan 3

Everything runs fine with unbound and KEA.

I do the following:

1) Disable Unbound and KEA (dhcp4).

2) I enable dnsmasq on port 53 with Lan, Vlan1, Vlan2, VLan3 interfaces.
3) I enable firewall rules for dhcp - The firewall rules are only created in LAN
4) I add static ips through "host" tab
5) I enable DHCP ranges using x.x.X.100 thru 150 for each vlan
6)I added server, dns and server search options for x.x.1.1

Can't get dhcp to work.

Is there a write up on how to migrage from unbound/KEA to using dnsmaq and an outside dns provider like 1.1.1.1 or 9.9.9.9?

Thanks in advance,
D

Hi -

1) How did you create the export?

2) can you supply a sample csv?  I tried creating several (including one with your headers) and fail on import everytime.

I receive this error for every entry in the csv:

!! A value is required.
!! Option not in list.

best,
D

What is the format needed for the csv file used to import static dns mappings into dnsmasq?

Thanks in advance.

D

I have removed and re-installed it.  Still same issue.

D

ping

I am seeing the following notice upon upgrading to 25.1.5.x:

os-speedtest-community (misconfigured)   0.9_6   42.5KiB   3   mimugmail   Speedtest

Any ideas on how to fix configuration?

I have not changed anything in my configuration other than running the upgrades.

D

Worked for me.

I had the same problem.  The solution above worked.  Is there a log file that needs to be cleaned up or deleted?

D