Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
Configuring for internal DNS server only
« previous
next »
Print
Pages: [
1
]
Author
Topic: Configuring for internal DNS server only (Read 1035 times)
hushcoden
Hero Member
Posts: 544
Karma: 23
Configuring for internal DNS server only
«
on:
February 19, 2022, 07:06:30 pm »
I'm reading two articles regarding how to configure for internal DNS only: the first on Zenarmor
website
and the second one from the Home Network Guy
here
There are a couple of differences:
1) for the allow ineternal DNS rule, in the first case the source address is
any
and in the second example is
XXXnet
2) for the blocking external DNS rule, in the first case the source address is
any
and in the second example is
XXXnet
Anyone who could explain to me the logic behind?
Tia.
Logged
tiermutter
Hero Member
Posts: 1097
Karma: 61
Re: Configuring for internal DNS server only
«
Reply #1 on:
February 19, 2022, 07:27:38 pm »
My first thought:
Second example (home network guy) sets this up for dmz (xxxnet) Interface and is just using the dmznet as source. However, setting up this should do that all clients use internal DNS and all clients will come from their specific interface / net (a Client on DMZ interface will always come from DMZ). I think it doesnt matter whether you use xxxnet or any.
But remember that this "force local DNS" Rules will not work for DoT and DoH (and DoQ).
Logged
i am not an expert... just trying to help...
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
Configuring for internal DNS server only
