Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
How do I allow a single device outbound DNS acces while...
« previous
next »
Print
Pages: [
1
]
Author
Topic: How do I allow a single device outbound DNS acces while... (Read 518 times)
stefan21
Full Member
Posts: 103
Karma: 10
How do I allow a single device outbound DNS acces while...
«
on:
August 24, 2024, 10:35:58 pm »
...in general every DNS request is redirected to the OPNsense?
There are two rules configured:
1. port forward:
LAN TCP/UDP * * ! LAN address 53 (DNS) 127.0.0.1 53 (DNS) Redirect external DNS requests to local DNS resolver
2. rules LAN:
--> IPv4 TCP/UDP * * 127.0.0.1 53 (DNS) * * Redirect external DNS requests to local DNS resolver
These two rules ensure that any DNS request from every device in the LAN is redirected to the OPNsense. Assuming I want to allow the IP 192.168.29.1 to query port 53 (DNS requests) to any outbound DNS service, i.e. 1.1.1.1 or 9.9.9.9. How can I achieve this, what rules are needed. At the moment I don't get it.
Any help is appreciatetd.
Logged
doktornotor
Hero Member
Posts: 709
Karma: 70
Re: How do I allow a single device outbound DNS acces while...
«
Reply #1 on:
August 24, 2024, 11:01:38 pm »
Use an alias in source instead of any which covers the whitelisted hosts and tick the 'invert" checkbox.
There are many threads here about this topic, those rules are likely incomplete.
Logged
stefan21
Full Member
Posts: 103
Karma: 10
Re: How do I allow a single device outbound DNS acces while...
«
Reply #2 on:
August 25, 2024, 09:58:49 am »
Thx a lot. That does the trick. Sometimes you need someone who points you in the right direction. And while reading the hint you start asking yourself, why you weren't able to find the way for yourself.
Thank's again for helping me with this.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
24.1 Legacy Series
»
How do I allow a single device outbound DNS acces while...