UnboundDNS and Windows AD DNS, best setup?

Started by Tasagore, February 01, 2025, 01:48:07 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 01, 2025, 01:48:07 PM
Hi

Newbie question...

I've a domain controller (Windows 2025 Server) and an OPNsense configured with UnboundDNS and Steve Block List as blacklist.

In the DC I've configured the OPNsense as external resolver and all the clients uses the DC DNS (setup by DHCP).

All works fine but when I take a look to the UnboundDNS reports all traffic comes from my DC and I need to know who's trying to access to blocked sites. Also if I want to override then blocklist for some specific workstation probably I couldn't since all the request come from the same computer (DC).

So I guess I should configure the DHCP server to assign then OPNsense as DNS resolver but how I must configure UnboundDNS to use the DC DNS first to resolve the internal requests?

Thanks
February 01, 2025, 07:54:05 PM #1
Quote from: Tasagore on February 01, 2025, 01:48:07 PMhow I must configure UnboundDNS to use the DC DNS first to resolve the internal requests?

Simply configure Query Forwarding for your internal zones.

Cheers
Maurice
OPNsense virtual machine images
OPNsense aarch64 firmware repository

Commercial support & engineering available. PM for details (en / de).
Print
Go Up Pages1
User actions