MultiWAN and BIND DNSBL

[lzamel]

Hi all,
I have a working setup using BIND DNSBL and MultiWAN (with one GW at this stage). All works correctly however adding a second GW (same tier) breaks DNS unless I set System -> General -> DNS per GW. Unfortunately, setting those ignores my BIND setup.

Is there some trick I'm missing or do I need to create firewall rule redirecting the hosts from System -> General -> DNS per GW to my BIND. For BIND I use a different set of servers.

L.

[mimugmail]

Multiwan only works with trffic going through the Firewall, bind is local initiiated traffic and only works via default gateway

[lzamel]

Is there a way to push this traffic thru firewall?

(Sorry if I'm asking dumb questions, new to PF.)

[mimugmail]

No, because the Service runs on the Firewall

[A1Dox]

Is there a way to push this traffic thru firewall?

Where is your bind instance running? Is it on the firewall itself or is it behind it, on your network? 

• If it's on the OPNsense device, did you work through Step 5 in the Multi-WAN setup here https://docs.opnsense.org/manual/how-tos/multiwan.html to manage local DNS traffic?
• If it's behind it, did you set similar firewall rules to ensure DNS requests from your LAN bind server go out the way you want?

[lzamel]

I did. Step 5 rule matches LAN traffic, it will not match traffic originating from firewall itself. As there is no way to force it thru PF it cannot be used to modify GW.