hi michael well, nince ripe / ipv4 is exhausted, bogon lists usage is also obsolete (do not want to start a general discussion obout this here ;-))
effectively I have also on pfsenses v2.0.2 DNS problems, als on local interfaces. so this is why I stated here a general problem in dns forwarder could be the issue I have not yet investigated this deeper; will go on in 1-2 weeks on that. br stephan 2013/3/23 Michael Schuh <michael.sc...@gmail.com>: > > > 2013/3/23 Michael Schuh <michael.sc...@gmail.com> >> >> >> 2013/3/21 WolfSec-Support <supp...@wolfsec.ch> >>> >>> hi, >>> >>> I can confirm similar dns-forwarder outages on other non PPtP setups >>> >>> I have CARP setups, where dns forwarder work not propperly. >>> most of them use OpenVPN also >>> >>> so may a general issie with the dns forwarder ? >>> >>> also a "overwrite" of a zone = zone forwarder will not work in v2.0.2 >>> >>> br >>> stephan >> >> >> hi stephan, >> >> thank you for your response. >> i checked this again also over other VPN-Connections. >> The behaviour is constant and reliable also through a IPSec-VPN with >> everything allowed in the packet-filter. >> the only point over that i stumbled and where i am not really sure is the >> "blog bogon networks" or RFC 1918 feature set. >> >> many thanks >> >> regards >> >> michael > > > Hi again, > > if i take a look over the small ruleset, i can see the blocking rules for > the bogon nets > in front of the rules for the local nets and firmly tied to the WAN-NIC. > The other NICs do not have those rulesets cause it is disabled. > > So this should not be the source for this behaviour. > > regards > > michael > > -- > = = = http://michael-schuh.net/ = = = > Projektmanagement - IT-Consulting - Professional Services IT > Michael Schuh > Postfach 10 21 52 > 66021 Saarbrücken > phone: 0681/8319664 > @: m i c h a e l . s c h u h @ g m a i l . c o m > > = = = Ust-ID: DE251072318 = = = > > _______________________________________________ > List mailing list > List@lists.pfsense.org > http://lists.pfsense.org/mailman/listinfo/list > -- Stephan Wolf WolfSec Rairing 65 CH-8108 Dällikon +41 43 536 1191 +41 76 566 8222 http://www.wolfsec.ch _______________________________________________ List mailing list List@lists.pfsense.org http://lists.pfsense.org/mailman/listinfo/list
