Can't access http/https internally, but can externally.

Started by sierra117, August 13, 2023, 05:27:07 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 13, 2023, 05:27:07 AM
I'm having an issue where I cannot get any of my url's to resolve internally. For instance, on my internal network, I cannot access 'auth."mydomain".com. However, on my phone, I can access auth."mydomain".com when it is connected to cell. If it is on wifi, I cannot. The connection will time out after about 20 seconds, which is leading me to think this is a firewall issue.


I've combed through my port forwards and my firewall rules endlessly. I have looked through unbound as well, and I cannot find where the issue lies. I don't see anything popping up in the firewall log. Can anybody help me troubleshoot this?

August 13, 2023, 08:38:03 AM #1
Set up split DNS to avoid your internal traffic hairpinning out via the WAN interface: https://homenetworkguy.com/how-to/configure-split-dns-opnsense-using-unbound/

That way, internal clients don't rely on external name resolution and the traffic stays inside your network. This is both more secure and more robust, since it will work if your internet is disconnected.

Bart...
August 13, 2023, 03:09:20 PM #2
I already had this set up. I re-enabled the re-direct DNS rules as well. Still no dice.
August 13, 2023, 04:22:31 PM #3
I fixed it. I had to turn NAT reflection on in firewall>setting>advanced
Print
Go Up Pages1
User actions