[SOLVED] DNS and ping not working

[ventablack]

Hello all!

I have a problem with my Opnsense firewall.

It seems that my firewall cannot resolve an external domain. For this reason I am not able to update the firewall.

When I try to update, I get the message:

Code: [Select]

***GOT REQUEST TO CHECK FOR UPDATES***
Currently running OPNsense 23.7.6 at Mon Oct 30 00:44:22 CET 2023
Fetching changelog information, please wait... fetch: https://pkg.opnsense.org/FreeBSD:13:amd64/23.7/sets/changelog.txz: Host is down
Updating OPNsense repository catalogue...
pkg: https://pkg.opnsense.org/FreeBSD:13:amd64/23.7/latest/meta.txz: Host is down
repository OPNsense has no meta file, using default settings
pkg: https://pkg.opnsense.org/FreeBSD:13:amd64/23.7/latest/packagesite.pkg: Host is down
pkg: https://pkg.opnsense.org/FreeBSD:13:amd64/23.7/latest/packagesite.txz: Host is down
Unable to update repository OPNsense
Error updating repositories!
pkg: Repository OPNsense cannot be opened. 'pkg update' required
Checking integrity... done (0 conflicting)
Your packages are up to date.
***DONE***

I have tried several DNS services and can't get it to work with any. (unbound, dnsmasq and also bind dns).
Currently I have dnsmasq in use with which I have achieved the best results so far.
When I put an external DNS(1.1.1.1) in the DNS server under System Settings General, the firewall can't resolve external domains when using it as a server with nslookup.

If I enter another local DNS server from my LAN network (openwrt access point) into the DNS server under Settings General, the firewall resolves external domains with nslookup, but I still get the same error when updating the firmware.

I have been looking for the error for several hours.
I hope someone can help me. I am about to give up.

I also switch back to unbound DNS if needed. I am grateful for any tips.

[newsense]

Check in Unbound settings if it is set to use the system DNS servers, or add a server or two in the DNS over TLS subsection for Unbound.

[dkanzlemar]

I am seeing the same issue after reboots since updating to 23.7.7. If I go into System --> Settings --> General, and then click save (no changes), once the save completes, ping and DBS work fine. As soon as I reboot, I end up back in the same situation.

[ventablack]

Thank you newsense for your reply. I just found the error.

I had misconfigured firwall rules that I had completely forgotten about. I think they blocked some of the traffic on my network.

[ventablack]

I am seeing the same issue after reboots since updating to 23.7.7. If I go into System --> Settings --> General, and then click save (no changes), once the save completes, ping and DBS work fine. As soon as I reboot, I end up back in the same situation.

Thank you for your reply. Unfortunately my problem was from a different source. Misconfigured firewall rules ...
I am at version 23.7.6.