Need DNS help

Started by dcol, April 03, 2021, 11:31:42 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 03, 2021, 11:31:42 PM
Hi,
I followed the tutorial on DNS Security to the letter and it just opened up a bunch of issues.

All I want is to have IPv4 and IPv6 available using DNSSEC. After I setup using the tutorial I had a bunch of DNS issues. Everything started resolving to IPv6 and then I had access issues. Outlook not working on the LAN. No access to Socks proxies. Seems all my IPv6 custom locations don't work because everything resolves to IPv6. I use static IP's from my ISP and they do not have IPv6 IP's available yet.

I don't know where to start. Is there a way to set overrides so certain domains are forced to resolve to IPv4? Or a way to always use IPv4, then use/fallback to IPv6 if no IPv4 DNS record exists?

As an example, if I tracert my email server domain, it returns an IPv6 address, but there is no IPv6 address on that server so I cannot get to it. Same with external proxies I access.

I did resort to disabling IPv6 on my NIC to access things, but I don't want all my users to have to do that. I do want to have access to IPv6 only sites. And I did set prefer IPv4 over IPv6.

Any help is appreciated.
April 04, 2021, 06:27:58 PM #1
Did you by any chance enable DNS64?
OPNsense virtual machine images
OPNsense aarch64 firmware repository

Commercial support & engineering available. PM for details (en / de).
April 05, 2021, 12:43:17 AM #2
Quote from: Maurice on April 04, 2021, 06:27:58 PM
Did you by any chance enable DNS64?

^This

If IPv4 domain are resolving with Ipv6 address you enabled DNS64, which you should NOT do unless you specify setup NAT64, which most people should not be doing.
April 05, 2021, 09:39:36 PM #3
That was it. Thanks
Print
Go Up Pages1
User actions