DNS Forwarder not working

Started by pboe, June 19, 2015, 05:51:24 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
June 19, 2015, 05:51:24 PM
Hi,
i have problems getting the dnsmasq running.
Installed 15.1.11 upgraded to 15.1.12
Multiwan setup
dhcp server running
system->settings dns servers entered and assigned to the 2 wans
dns forwarder enabled, no other checkbox enabled on this page
diagnostics->dns lookup works
dhcp works and distributes the ip number of the opnsense box as a nameserver to all clients
i can ping from any host ip numbers but i can't resolve any domain name

Any help is very welcome,
Best regards,
Paul

/etc/resolv.conf
domain foo.local
nameserver 127.0.0.1
nameserver 8.8.8.8
nameserver 8.8.4.4
nameserver 194.25.0.52
nameserver 194.25.0.68

/etc/hosts
127.0.0.1       localhost localhost.foo.local
10.190.30.254   foorouter.foo.local foorouter
June 19, 2015, 05:56:20 PM #1 Last Edit: June 19, 2015, 06:23:34 PM by franco
dnsmasq version was bumped in the last update, can you try the following to see if the new version behaves differently. Run this from the root shell:

(Assuming you use OpenSSL/amd64, if not, the URL must be adapted)

# fetch https://pkg.opnsense.org/FreeBSD:10:amd64/15.1.11.4/OpenSSL/All/dnsmasq-2.72_1,1.txz
# pkg add -f dnsmasq-2.72_1,1.txz

Restart the service from the GUI or better yet try a reboot.

It would also be helpful to see a screenshot of any dnsmasq-related error messages in the system logs pages.

Thanks,
Franco
June 19, 2015, 06:00:17 PM #2
BTW, to get back to the latest version, type:

# pkg install -yf dnsmasq
June 19, 2015, 06:17:23 PM #3
Hi Franco,
no errors in the log.
June 19, 2015, 06:21:00 PM #4
Quote from: franco on June 19, 2015, 06:00:17 PM
BTW, to get back to the latest version, type:

# pkg install -yf dnsmasq

Did you mean:
# pkg install -Af dnsmasq

root@OPNsense:~ # pkg add -yf dnsmasq-2.72_1,1.txz
pkg: illegal option -- y
Usage: pkg add [-IAfqM] <pkg-name> ...
       pkg add [-IAfqM] <protocol>://<path>/<pkg-name> ...

For more information see 'pkg help add'.

June 19, 2015, 06:23:12 PM #5
Oh, sorry, no "-y" for pkg-add needed; "-f" is enough.
June 19, 2015, 06:24:29 PM #6
By the way,
shouldn't there be a /etc/dnsmasq.conf file?

June 19, 2015, 06:30:34 PM #7
Hi,
tried:
# fetch https://pkg.opnsense.org/FreeBSD:10:amd64/15.1.11.4/OpenSSL/All/dnsmasq-2.72_1,1.txz
# pkg add -f dnsmasq-2.72_1,1.txz

reboot,
same as before.

June 19, 2015, 07:43:35 PM #8 Last Edit: June 19, 2015, 07:51:39 PM by pboe
Hi,
did a clean install with 15.1.12
Same thing.
June 21, 2015, 07:07:26 PM #9
And with the old 15.1.11.1? Sorry to bug you. We can't pin this down for some reason. https://pkg.opnsense.org/releases/15.1.11.1/
June 22, 2015, 11:57:33 AM #10
Hi Franco,
i've done a clean installation of 15.1.11.1.
Configured wan network settings, which is the default gateway, everything works fine.
Then started to configure the multi wan setup by adding a 2nd wan, adding in the routing tab a new group with both interfaces as tier 1 for load balancing.
Still everything works, even the 2nd Wan is not physically connected.
Once i edit the standard firewall rule to use the load balancing gateway group, the dns isn't working any more for the connected clients.

Best regards,
Paul 
June 26, 2015, 09:41:54 PM #11 Last Edit: June 26, 2015, 09:44:45 PM by philamonster
Are you sure the resolver is not running? Just had a forwarding issue myself after removing a manual dnsmasq entry for a secondary hostname. Service would not start after I saved and all my host overrides failed. Turns out unbound was running though disabled in gui with an apply button to save changes every time I went to Services > DNS Resolver.

I killed unbound and manually started dnsmasq and the service started. Though the resolver is disabled I am still prompted to save changes in gui under Services > DNS Resolver for whatever reason.
June 27, 2015, 10:01:10 PM #12 Last Edit: June 27, 2015, 11:20:36 PM by philamonster
Ok, after reboot had to start dnsmasq manually again. DNS Resolver not running and not asking to apply changes in gui / disabled. DNS Forwarder is enabled in gui too but just doesn't start. 

EDIT: dnsmasq seems to get SIGTERM when restarting ANY service. Just adding/removing static DHCP lease killed it.

This is when starting service from Status > Services:

Code Select
Jun 27 17:13:35 dnsmasq[19366]: FAILED to start up
Jun 27 17:13:35 dnsmasq[19366]: junk found in command line

Static DHCP mappings also not being written to /etc/hosts.
June 29, 2015, 01:49:27 PM #13
Hi,
switching from the resolver to the forwarder in the gui, stops unbound and starts dnsmasq. so from that side evrything is fine.
Things stop working, when i change the firewall rule to use the multi wan gateway group instead of the default gateway.

Print
Go Up Pages1
User actions