Author Topic: Guest VLAN can't resolve DNS (I'm using Unbound for all my interfaces) (Read 2821 times)

warheat1990 · « **on:** December 31, 2021, 11:13:14 am »

Hello friend,

I'm using Unbound DNS for all interfaces in my network.

I have a Guest network (VLAN100), I block this Guest network from accessing other network (RFC1918) in the Firewall rules.

Unfortunately, that means the clients under Guest VLAN won't be able to resolve DNS. How do I block Guest VLAN from accessing private network (RF1918) but still allow the clients under Guest VLAN to resolve the DNS?

KHE · « **Reply #1 on:** December 31, 2021, 11:52:53 am »

Hi

simply but a rule on top of the block rule to allow the traffic from the Guest net to the Guest address with port 53 (DNS) and IPv4 UDP or IPv4 TCP/UDP.

KH

warheat1990 · « **Reply #2 on:** December 31, 2021, 01:07:26 pm »

Quote from: KHE on December 31, 2021, 11:52:53 am

Hi

simply but a rule on top of the block rule to allow the traffic from the Guest net to the Guest address with port 53 (DNS) and IPv4 UDP or IPv4 TCP/UDP.

KH

Thanks, works perfectly

Author Topic: Guest VLAN can't resolve DNS (I'm using Unbound for all my interfaces) (Read 2821 times)

warheat1990

Guest VLAN can't resolve DNS (I'm using Unbound for all my interfaces)

KHE

Re: Guest VLAN can't resolve DNS (I'm using Unbound for all my interfaces)

warheat1990

Re: Guest VLAN can't resolve DNS (I'm using Unbound for all my interfaces)