Bug #3721
closed
UDP port 53 is locked by DNS Forwarder even if interface is not selected
0%
Description
Hello
Currently running the latest pfsense 2.1.3-RELEASE (amd64).
Currently I have some Virtual IPs setup for our public IPs (DMZ), and OpenVPN assigned to one of these VIPs. I decided to run a specific OpenVPN server on port UDP 53 (DNS) and discovered that OpenVPN server for that configuration would not start unless I shutdown the following services first then start them back up after I start OVPN:
- dnsmasq
- ntpd
I believe this is a bug, since if the VIP interface is not selected on the DNS Forwarder configuration page pfsense should not block/use port 53 on that interface. Therefore, it should be available for OpenVPN to use without having to shutdown the other services first.
Updated by Jim Pingle over 10 years ago
- Status changed from New to Rejected
You must use the "Strict Interface Binding" option to force dnsmasq to change its binding in the way you describe. Otherwise it still binds to *:53 but only accepts queries on the chosen interfaces. If you need more help, post in the forum.