New Content #12883: Add note to DNS Resolver/Forwarder Host Overrides docs about client DNS bypassing the firewall (e.g. DoH) - pfSense Docs - pfSense bugtracker

Actions

Copy link

New Content #12883

closed

Add note to DNS Resolver/Forwarder Host Overrides docs about client DNS bypassing the firewall (e.g. DoH)

Added by Walt Stoneburner about 2 years ago. Updated about 1 year ago.

Status:

Resolved

Priority:

Normal

Assignee:

Jim Pingle

Category:

DNS

Target version:

Start date:

Due date:

% Done:

100%

Estimated time:

Description

Page: https://docs.netgate.com/pfsense/en/latest/services/dns/resolver-host-overrides.html

Feedback:

I have been struggling with Host Overrides not appearing to work for quite a while now. Finally got it resolved. For details, see https://forum.netgate.com/topic/170227/host-overrides-are-not-resolving-used-to

A single footnote could have saved a few years of frustration and a few days of diagnostics.

What I'd love to see is a troubleshooting footnote on this page that says if DNS appears to be working, but Host Overrides are not, then it's likely a browser or some intermediate networking device has DNS Over HTTPS turned on. (Thus, the DNS isn't being resolved by pfSense.)

( The solution is to turn it off. Or, get pfSense to do the DNS encryption, not a upstream device. An example of how to do that resides at https://www.netgate.com/blog/dns-over-tls-with-pfsense )

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Docs

New Content #12883

Add note to DNS Resolver/Forwarder Host Overrides docs about client DNS bypassing the firewall (e.g. DoH)

Updated by Jim Pingle almost 2 years ago

Updated by Chris W over 1 year ago

Updated by Jim Pingle over 1 year ago

Updated by Jim Pingle over 1 year ago

Updated by Jim Pingle over 1 year ago

Updated by Jim Pingle about 1 year ago