pfSense General DNS Settings with IPSec and dnsmasq

December 21st, 2009

I just found that I had mis-configured my General DNS settings on my pfSense firewall.

I had set the first entry to a DNS Server I have setup on a server on a network which I can connect to via IPSec. I don't think that the dnsmasq running on my firewall is able to access that server, and that was causing the dnsmasq server to be non-responsive. I'm not sure why it is unable to access the server, but I guess it might have something to do with which interface it is bound to, and whether or not the firewall or the default routes will allow traffic from it over IPSec.

Anyway, on the General settings page, I removed the DNS entry for the VPN accessible server. After that, the dnsmasq server was again accessible from my lan.

Cool. Probably not a common mistake that people make, but important to note nonetheless.

Yearly Indexes: 2003 2004 2006 2007 2008 2009 2010 2011 2012 2013 2015 2019 2020 2022