Bug #15434
closed
DNS Forwarder ignores "Use remote DNS Servers, ignore local DNS" setting
Added by aleksei prokofiev 7 months ago.
Updated about 2 months ago.
Plus Target Version:
24.11
Description
In General Setup if use option "Use remote DNS Servers, ignore local DNS" the DNS Forwarder still try to use local DNS. If this is expected behavior, the docs should be corrected.
The docs says "This option forces the firewall to use the DNS servers configured on this page or from dynamic WANs and it will not utilize the local DNS Resolver or DNS Forwarder."
Tested on 23.09.1 and 24.03
Files
- Status changed from New to Not a Bug
I can't reproduce that here.
Before:
: cat /etc/resolv.conf
nameserver 127.0.0.1
nameserver ::1
nameserver 198.51.100.1
nameserver 2001:db8::1
nameserver 2001:4860:4860::8844
nameserver 2001:4860:4860::8888
nameserver 8.8.8.8
nameserver 8.8.4.4
After:
: cat /etc/resolv.conf
nameserver 198.51.100.1
nameserver 2001:db8::1
nameserver 2001:4860:4860::8844
nameserver 2001:4860:4860::8888
nameserver 8.8.8.8
nameserver 8.8.4.4
It appears to be working as expected.
I can replicate this issue. It's present only when you disable unbound and enable the forwarder(dnsmasq).
Use remote DNS Servers, ignore local DNS option is selected under System/General Setup
cat /etc/resolv.conf
nameserver 127.0.0.1
nameserver ::1
nameserver 172.21.10.4
same behavior on my edge when switching to forwarder
nameserver 127.0.0.1
nameserver ::1
nameserver 192.168.3.1
nameserver 192.168.3.2
- Project changed from pfSense Plus to pfSense
- Subject changed from For some reason with enabled "Use remote DNS Servers, ignore local DNS", the DNS Forwarder still try to use local DNS. to DNS Forwarder ignores "Use remote DNS Servers, ignore local DNS" setting
- Category changed from DNS Forwarder to DNS Forwarder
- Status changed from Not a Bug to In Progress
- Assignee set to Jim Pingle
- Target version set to 2.8.0
- Affected Plus Version deleted (
24.03)
- Plus Target Version set to 24.07
OK, I can also reproduce this with the DNS Forwarder. I also have a fix coming. Looks like some parenthesis around the tests involved were slightly wrong.
- Status changed from In Progress to Feedback
- % Done changed from 0 to 100
This patch seems to work, however, I had to manually re-save the config on the General Setup page for the changes to resolv.conf to push, even though it was selected to "Use Remote DNS Servers, ignore local DNS" already. Tested on 2.7.2 and 24.03-release.
- Status changed from Feedback to Resolved
dylan mendez wrote in #note-6:
This patch seems to work, however, I had to manually re-save the config on the General Setup page for the changes to resolv.conf to push, even though it was selected to "Use Remote DNS Servers, ignore local DNS" already. Tested on 2.7.2 and 24.03-release.
That's expected, either re-save there or reboot since applying the patch wouldn't automatically regenerate the resolv.conf file, something else would have to trigger that.
- Plus Target Version changed from 24.07 to 24.08
- Plus Target Version changed from 24.08 to 24.11
Also available in: Atom
PDF
Updated by 
Updated by 
Updated by 
Updated by 
