OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 18.7 Legacy Series »
  • Unbound DNS serving OpenVPN client requests
« previous next »
  • Print
Pages: [1]

Author Topic: Unbound DNS serving OpenVPN client requests  (Read 3087 times)

eblot

  • Newbie
  • *
  • Posts: 31
  • Karma: 1
    • View Profile
Unbound DNS serving OpenVPN client requests
« on: August 13, 2018, 11:53:13 am »
Hi,

I noticed that the unbound server (using the default setting) where not resolving DNS requests issued from my OpenVPN client.

nslookup ran on the VPN client site reports

** server can't find <host.domain>: REFUSED

The log file on OpnSense shows:

debug: refused query from ip4 10.0.83.6 port 56092 (len 16)

The access list shows that the physical IPv4 networks have been automatically added (2 WAN, 1 LAN, 1 local), but the VPN network (10.0.83.0/24 here) has not been added...

Adding this network to the access list solved this issue, but is this what is expected? The "Network Interfaces" was defined to "All", so I would have expected the VPN subnet to be part of theses interfaces.

Thanks.
Logged

sco01

  • Newbie
  • *
  • Posts: 5
  • Karma: 1
    • View Profile
Re: Unbound DNS serving OpenVPN client requests
« Reply #1 on: August 14, 2018, 08:13:45 am »
Thanks. This solved the problem for me too. I guess the OpenVPN wizard should have added it automatically.
Logged

AhnHEL

  • Newbie
  • *
  • Posts: 31
  • Karma: 3
    • View Profile
Re: Unbound DNS serving OpenVPN client requests
« Reply #2 on: August 14, 2018, 02:58:32 pm »
Recently "upgraded" to OPNsense from pfSense and this was the only hiccup I had during the transition.   I read up on how to resolve it here in the forum, but would like to see the Wiki Tutorial updated to include this tidbit for new users like myself.

I'm sure code just hasn't been written to automagically include the custom private VPN subnet.  I'm not a programmer, so I will support the project in other ways here in the forums and monetarily as I can.
Logged
AhnHEL (Angel)
NYC

4 sites: OPNsense 23.1_6-amd64
Dell R220, Xeon E3-1240v3, 16GB RAM, 940/880 Mbps, Intel I350-T4
Dell R210II, Xeon E3-1240v2, 8GB RAM, 940/880 Mbps, I350-T2
Dell R210II, Xeon E3-1220, 8GB RAM, 200/35 Mbps, I350-T2
Dell 7010SFF, i5-3570, 16GB RAM, 200/35 Mbps, I350-T2

  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 18.7 Legacy Series »
  • Unbound DNS serving OpenVPN client requests
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2023 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy
    | XHTML | RSS | WAP2