Project

General

Profile

Bug #3721

UDP port 53 is locked by DNS Forwarder even if interface is not selected

Added by Gio M about 5 years ago. Updated about 5 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
06/25/2014
Due date:
% Done:

0%

Estimated time:
Affected Version:
Affected Architecture:

Description

Hello

Currently running the latest pfsense 2.1.3-RELEASE (amd64).

Currently I have some Virtual IPs setup for our public IPs (DMZ), and OpenVPN assigned to one of these VIPs. I decided to run a specific OpenVPN server on port UDP 53 (DNS) and discovered that OpenVPN server for that configuration would not start unless I shutdown the following services first then start them back up after I start OVPN:

- dnsmasq
- ntpd

I believe this is a bug, since if the VIP interface is not selected on the DNS Forwarder configuration page pfsense should not block/use port 53 on that interface. Therefore, it should be available for OpenVPN to use without having to shutdown the other services first.

History

#1 Updated by Jim Pingle about 5 years ago

  • Status changed from New to Rejected

You must use the "Strict Interface Binding" option to force dnsmasq to change its binding in the way you describe. Otherwise it still binds to *:53 but only accepts queries on the chosen interfaces. If you need more help, post in the forum.

Also available in: Atom PDF