What's the correct way to set up local zone reverse lookup with Unbound?

Started by Taomyn, June 26, 2020, 04:04:21 PM

Previous topic - Next topic
Print
Go Down Pages 1 2 3
User actions
March 01, 2021, 05:17:59 PM #30 Last Edit: March 01, 2021, 05:20:23 PM by djbmister
So had a similiar issue, I wanted to use my wifiap router to resolve the wifi clients PTR records back to the opnsense.

opnsense > wifiap > wifi client ptr

Turns out unbound blocks by default any local-zone that it does not know about.

So in opnsense 20.7 and later, you need to setup the domain overrides:

as an example:

wifi being the domain forwarded to the wifiap router
and then the PTR address record so to pick up the wifi clients records.

Code Select
wifi 192.168.10.3 wifi domain on AP
10.168.192.in-addr.arpa 192.168.10.3 WIFIAP LAN2G PTR 192.168.10

Then in the unbound 'General section', 'Custom options', add the 'local-zone' of the PTR records

Code Select
local-zone: "10.168.192.in-addr.arpa" transparent

Then the PTR record will be queried to the forwarding dns server aka the wifiap router.
March 02, 2021, 09:44:29 AM #31
Quote from: djbmister on March 01, 2021, 05:17:59 PM
Then in the unbound 'General section', 'Custom options', add the 'local-zone' of the PTR records

Code Select
local-zone: "10.168.192.in-addr.arpa" transparent

Then the PTR record will be queried to the forwarding dns server aka the wifiap router.


When I add this after adding the overrides, the service no longer starts, I'm on OPNsense v21.
March 02, 2021, 10:12:57 AM #32 Last Edit: March 02, 2021, 10:14:28 AM by djbmister
Quote from: Taomyn on March 02, 2021, 09:44:29 AM
Quote from: djbmister on March 01, 2021, 05:17:59 PM
Then in the unbound 'General section', 'Custom options', add the 'local-zone' of the PTR records

Code Select
local-zone: "10.168.192.in-addr.arpa" transparent

Then the PTR record will be queried to the forwarding dns server aka the wifiap router.


When I add this after adding the overrides, the service no longer starts, I'm on OPNsense v21.

Mine looks like this

Code Select
server:
rrset-roundrobin: yes
local-zone: "10.168.192.in-addr.arpa" transparent

Works fine for me. You have no space between "transparent"
March 03, 2021, 08:05:26 AM #33
Quote from: djbmister on March 02, 2021, 10:12:57 AM
Works fine for me. You have no space between "transparent"


No it's there, just the font being used in the GUI makes it difficult to see. I re-entered the line and it was still the same and the service refused to start.


What do you have for the "Local Zone Type" above as I wonder if that is conflicting?
Print
Go Up Pages 1 2 3
User actions