Can't access http/https internally, but can externally.

[sierra117]

I'm having an issue where I cannot get any of my url's to resolve internally. For instance, on my internal network, I cannot access 'auth."mydomain".com. However, on my phone, I can access auth."mydomain".com when it is connected to cell. If it is on wifi, I cannot. The connection will time out after about 20 seconds, which is leading me to think this is a firewall issue.


I've combed through my port forwards and my firewall rules endlessly. I have looked through unbound as well, and I cannot find where the issue lies. I don't see anything popping up in the firewall log. Can anybody help me troubleshoot this?

[bartjsmit]

Set up split DNS to avoid your internal traffic hairpinning out via the WAN interface: https://homenetworkguy.com/how-to/configure-split-dns-opnsense-using-unbound/

That way, internal clients don't rely on external name resolution and the traffic stays inside your network. This is both more secure and more robust, since it will work if your internet is disconnected.

Bart...

[sierra117]

I already had this set up. I re-enabled the re-direct DNS rules as well. Still no dice.

[sierra117]

I fixed it. I had to turn NAT reflection on in firewall>setting>advanced