OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 21.1 Legacy Series »
  • DNS resolution issues
« previous next »
  • Print
Pages: [1]

Author Topic: DNS resolution issues  (Read 2305 times)

mortomanos

  • Newbie
  • *
  • Posts: 2
  • Karma: 0
    • View Profile
DNS resolution issues
« on: March 28, 2021, 12:56:14 pm »
I have a standard configuration with LTE as WAN interface, and DHCP on LAN. Unbound is configured as DNS on the firewall.

Most clients have a very strange behaviour. From time to time (multiple times each hour) DNS resolution stops working, e.g. when trying to browse a website or use Youtube app on mobile phones. It helps (on WLAN devices) to enter airplane mode for a few seconds and reenter WLAN - then the DNS resolution works again.

When I configure "Enable forwarding mode" (DNS query forwarding) this issue was gone, but the local DHCP clients then are no longer resolvable.

What I discovered today is, that on a Mac connected via LAN, the following happens:

Code: [Select]
imac5k:~ xxx$ ping www.google.at
ping: cannot resolve www.google.at: Unknown host
imac5k:~ xxx$ nslookup www.google.at
Server: 10.1.1.254
Address: 10.1.1.254#53

Non-authoritative answer:
Name: www.google.at
Address: 142.250.185.131

imac5k:~ xxx$ ping www.google.at
ping: cannot resolve www.google.at: Unknown host
imac5k:~ xxx$ nslookup www.google.at 10.1.1.254
Server: 10.1.1.254
Address: 10.1.1.254#53

Non-authoritative answer:
Name: www.google.at
Address: 142.250.185.131

imac5k:~ xxx$ ping www.google.at
ping: cannot resolve www.google.at: Unknown host
imac5k:~ xxx$ host www.google.at
www.google.at has address 142.250.185.131
www.google.at has IPv6 address 2a00:1450:4001:812::2003
imac5k:~ xxx$ ping www.google.at
ping: cannot resolve www.google.at: Unknown host
So "ping" does not resolve, "nslookup" and "host" do. After trying to open www.google.at in another Safari tab the resolution suddenly started working.

Is anyone able to help me in resolving this issue?
Logged

cranky

  • Newbie
  • *
  • Posts: 38
  • Karma: 0
    • View Profile
Re: DNS resolution issues
« Reply #1 on: March 28, 2021, 01:50:49 pm »
Are you sure your LTE connection isnt bugging out? i mean its LTE, might be that your route to the DNS servers are not working temporary.
OR maybe try different DNS servers as a test?
Logged

mortomanos

  • Newbie
  • *
  • Posts: 2
  • Karma: 0
    • View Profile
Re: DNS resolution issues
« Reply #2 on: March 28, 2021, 03:36:23 pm »
LTE is stable (in fact it is UMTS HSDPA), I have a permanent ping running which doesn't drop anything. The same connection worked well using a LTE bridge over a ZyXEL firewall, with no DNS issues. So it must be something in the config. I also tried several DNS servers, the ones from the LTE provider, google DNS and others.
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 21.1 Legacy Series »
  • DNS resolution issues
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2