Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
Constant DNS queries for opnsense.emergingthreats.net
« previous
next »
Print
Pages: [
1
]
Author
Topic: Constant DNS queries for opnsense.emergingthreats.net (Read 930 times)
nikon112
Newbie
Posts: 1
Karma: 0
Constant DNS queries for opnsense.emergingthreats.net
«
on:
January 30, 2023, 08:38:49 pm »
After enabling Unbound DNS reporting I am seeing over 40,000 DNS queries for opnsense.emergingthreats.net over the course of six hours.
I am using Unbound (no blocklist) on opnsense with DoT to nextdns.
The queries all Pass and come back NOERROR with the vast majority being answered from Cache.
Since the queries are mostly being answered from cache they don't show up on nextdns, which is why I had not noticed before.
To be clear the queries are also not being blocked by nextdns.
Is anyone else seeing this issue, or know how to fix it?
Thanks.
Logged
Fright
Hero Member
Posts: 1766
Karma: 162
Re: Constant DNS queries for opnsense.emergingthreats.net
«
Reply #1 on:
January 31, 2023, 01:04:58 pm »
using os-etpro-telemetry ids rules plugin?
"When you allow your OPNsense system to share anonymized information about detected threats - the alerts -
you are able to use the ETPro ruleset free of charge."
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
Constant DNS queries for opnsense.emergingthreats.net