Questions about unbound DNS and Adguard

Started by malli2602, November 29, 2021, 12:00:25 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
November 29, 2021, 12:00:25 PM
Hello OPNsens Folks,

I'm pretty much new here and I have some questions about unbound DNS and the interaction with adguard.
Wana use OPNSense as my main Router and I will migrate Service by Service started with DNS.

Configured Unbound DNS in Adguard on 5353 with the following settings.
Code Select

Port: 5353
DNSSEC: ON
DNS64: ON DNS64 prefix
DHCP Registration: ON
IPv6 Link-Local: ON
TXT Comment Support: ON
DNS Cache: ON


DNS over TLS to following Servers
Code Select

1.1.1.1 853
8.8.8.8 853
9.9.9.9 853
149.112.112.112 853
1.0.0.1 853
2606:4700:4700::1111 853
2606:4700:4700::1001 853


When I use the 127.0.0.1:5353 in my Adguard (that is installed on the same host with the OPNsense plugin) DNS Requests need ages to load and some pages don't load even after waiting a few minutes.

When I use the Servers direct in my Adblock everything is fine.

What did I do wrong? Can I give you more Information?

Best regards,
Stephan
November 29, 2021, 01:24:39 PM #1
Try this thread for a view of how they interact https://forum.opnsense.org/index.php?topic=22162.0 .
November 29, 2021, 02:51:32 PM #2
Quote from: cookiemonster on November 29, 2021, 01:24:39 PM
Try this thread for a view of how they interact https://forum.opnsense.org/index.php?topic=22162.0 .

Hi and thank you for the answer.
Unfortunately, that's not helping me because of some reason.
1. They are ignoring IPv6 completely
2. They are not using DoT
3. The unbound DNS config with "Only select: 'Register DHCP leases' & 'Register DHCP static mappings'" is not working at all.

any other ideas or even more information I can share with you?

King regards,
Stephan
November 29, 2021, 03:41:21 PM #3
Started from scratch.
After I reinstalled the adguard and started from scratch I get it up and running.
DNS is now much quicker and security is good for IPv4 and 6.
What is not working right now is that adguard is not showing the hostnames of the clients.
does someone know about that?

Thanks
November 29, 2021, 06:49:24 PM #4
- In Opnsense - Unbound - Miscellaneous   set the desired dns servers 1.1.1.1@853     8.8.8.8@853

- Active Unbound in port 5353

- In Adguard Home - DNS Configuration - Upstream Servers add router_ip:5353
Print
Go Up Pages1
User actions