Re: [pfSense Support] Strange DNS problem
Quoting Lyle Giese l...@lcrcomputer.net: on the computer you are trying to initiate the ssh session from, telnet hostname. Do you get the correct ip adress? If so, it not a DNS problem.(I would normally advise using dig for troubleshooting dns issues, but I don't know the OS of your computer to know if it already has dig installed) I'm using Debian Linux as a desktop. When I ask the local system to resolve the hostname to IP it gives the correct result. I can ping the IP successfully as well. It's definitely not my laptop because I'm responding from a Windows computer and an SSH session yielded the exact same problem. Double check your rules and make sure you are not redirecting outbound port 22 traffic within pfSense back to your internal server. As mentioned, I have the automatic outbound rules for NAT enabled. Maybe this is the culprit? Anybody ever have bad rules automatically created by pfsense perhaps? Lyle Cheers, Phil - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Strange DNS problem
On Thu, Oct 8, 2009 at 19:42, Philippe LeCavalier supp...@plecavalier.com wrote: Like I said I don't know what other info to supply, when I ssh to a clients network pfsense redirects me to my local server. The strangest thing to me is that even when I use the public IP it does that. If it were just the FQDN I wouldn't really care but this is a true problem for me and I really don't know where to start troubleshooting this. This doesn't help with the IP redirection bit, but dnsmasq returns its own IP for queries it can't answer (mis-typed domains, usually). I've noticed this with pfSense when I type in a hostname too quickly and end up hitting the external interface of my pfSense box. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Strange DNS problem
Quoting RB aoz@gmail.com: On Thu, Oct 8, 2009 at 19:42, Philippe LeCavalier supp...@plecavalier.com wrote: Like I said I don't know what other info to supply, when I ssh to a clients network pfsense redirects me to my local server. The strangest thing to me is that even when I use the public IP it does that. If it were just the FQDN I wouldn't really care but this is a true problem for me and I really don't know where to start troubleshooting this. This doesn't help with the IP redirection bit, but dnsmasq returns its own IP for queries it can't answer (mis-typed domains, usually). I've noticed this with pfSense when I type in a hostname too quickly and end up hitting the external interface of my pfSense box. - If that were the case, pinging the FQDN I'm trying to reach would return my own public IP. Cheers, Phil - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
Re: [pfSense Support] Strange DNS problem
Quoting supp...@plecavalier.com: Quoting RB aoz@gmail.com: On Thu, Oct 8, 2009 at 19:42, Philippe LeCavalier supp...@plecavalier.com wrote: Like I said I don't know what other info to supply, when I ssh to a clients network pfsense redirects me to my local server. The strangest thing to me is that even when I use the public IP it does that. If it were just the FQDN I wouldn't really care but this is a true problem for me and I really don't know where to start troubleshooting this. This doesn't help with the IP redirection bit, but dnsmasq returns its own IP for queries it can't answer (mis-typed domains, usually). I've noticed this with pfSense when I type in a hostname too quickly and end up hitting the external interface of my pfSense box. - If that were the case, pinging the FQDN I'm trying to reach would return my own public IP. Cheers, Phil Just FYI I disabled autmatic outbound NAT rules and set a manual outbound NAT rule LAN--ALL--WAN--any and got the same problem. Cheers, Phil - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
RE: [pfSense Support] Strange DNS problem
Date: Fri, 9 Oct 2009 10:37:12 -0500 From: supp...@plecavalier.com To: support@pfsense.com Subject: Re: [pfSense Support] Strange DNS problem Quoting supp...@plecavalier.com: Quoting RB aoz@gmail.com: On Thu, Oct 8, 2009 at 19:42, Philippe LeCavalier supp...@plecavalier.com wrote: Like I said I don't know what other info to supply, when I ssh to a clients network pfsense redirects me to my local server. The strangest thing to me is that even when I use the public IP it does that. If it were just the FQDN I wouldn't really care but this is a true problem for me and I really don't know where to start troubleshooting this. This doesn't help with the IP redirection bit, but dnsmasq returns its own IP for queries it can't answer (mis-typed domains, usually). I've noticed this with pfSense when I type in a hostname too quickly and end up hitting the external interface of my pfSense box. - refresh my memory, but in one of your earlier emails you said that your SSH server was accessible from the internet with no issue? If thats the case Im wondering if the rule you have set up for that is misconfigured and is routing EVERYTHING no matter the source or dest on that port to your server. (i.e. its set to an ANY - ANY instead of an ANY - SERVER1 for port 22 SSH traffic)
RE: [pfSense Support] Strange DNS problem
Quoting Sean Cavanaugh millenia2...@hotmail.com:
--_4f4e8c85-61e6-43a3-811e-693f4641a6d6_
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
=20
Date: Fri=2C 9 Oct 2009 10:37:12 -0500
From: supp...@plecavalier.com
To: support@pfsense.com
Subject: Re: [pfSense Support] Strange DNS problem
=20
Quoting supp...@plecavalier.com:
=20
Quoting RB aoz@gmail.com:
On Thu=2C Oct 8=2C 2009 at 19:42=2C Philippe LeCavalier
supp...@plecavalier.com wrote:
Like I said I don't know what other info to supply=2C when I ssh to=20
a clients network pfsense redirects me to my local server. The=20
strangest thing to me is that even when I use the public IP it=20
does that. If it were just the FQDN I wouldn't really care but=20
this is a true problem for me and I really don't know where to=20
start troubleshooting this.
This doesn't help with the IP redirection bit=2C but dnsmasq returns i=
ts
own IP for queries it can't answer (mis-typed domains=2C usually). I'v=
e
noticed this with pfSense when I type in a hostname too quickly and
end up hitting the external interface of my pfSense box.
-
refresh my memory=2C but in one of your earlier emails you said that your S=
SH server was accessible from the internet with no issue?
=20
If thats the case Im wondering if the rule you have set up for that is misc=
onfigured and is routing EVERYTHING no matter the source or dest on that po=
rt to your server. (i.e. its set to an ANY - ANY instead of an ANY - SERV=
ER1 for port 22 SSH traffic)
=
--_4f4e8c85-61e6-43a3-811e-693f4641a6d6_
Content-Type: text/html; charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
html
head
style!--
.hmmessage P
{
margin:0px=3B
padding:0px
}
body.hmmessage
{
font-size: 10pt=3B
font-family:Verdana
}
--/style
/head
body class=3D'hmmessage'
nbsp=3BBR
gt=3B Date: Fri=2C 9 Oct 2009 10:37:12 -0500BRgt=3B From: supp...@pleca=
valier.comBRgt=3B To: support@pfsense.comBRgt=3B Subject: Re: [pfSens=
e Support] Strange DNS problemBRgt=3B BRgt=3B Quoting supp...@plecava=
lier.com:BRgt=3B BRgt=3B gt=3B Quoting RB lt=3baoz@gmail.comgt=
=3B:BRgt=3B gt=3BBRgt=3B gt=3Bgt=3B On Thu=2C Oct 8=2C 2009 at 19:=
42=2C Philippe LeCavalierBRgt=3B gt=3Bgt=3B lt=3bsupp...@plecavalier.=
comgt=3B wrote:BRgt=3B gt=3Bgt=3Bgt=3B Like I said I don't know what=
other info to supply=2C when I ssh to BRgt=3B gt=3Bgt=3Bgt=3B a clie=
nts network pfsense redirects me to my local server. The BRgt=3B gt=3B=
gt=3Bgt=3B strangest thing to me is that even when I use the public IP it =
BRgt=3B gt=3Bgt=3Bgt=3B does that. If it were just the FQDN I wouldn'=
t really care but BRgt=3B gt=3Bgt=3Bgt=3B this is a true problem for =
me and I really don't know where to BRgt=3B gt=3Bgt=3Bgt=3B start tro=
ubleshooting this.BRgt=3B gt=3Bgt=3BBRgt=3B gt=3Bgt=3B This doesn=
't help with the IP redirection bit=2C but dnsmasq returns itsBRgt=3B g=
t=3Bgt=3B own IP for queries it can't answer (mis-typed domains=2C usually=
). I'veBRgt=3B gt=3Bgt=3B noticed this with pfSense when I type in a h=
ostname too quickly andBRgt=3B gt=3Bgt=3B end up hitting the external =
interface of my pfSense box.BRgt=3B gt=3Bgt=3BBRgt=3B gt=3Bgt=3B =
-BRg=
t=3B gt=3BBRBR
refresh my memory=2C but in one of your earlier emails you said that your S=
SH server was accessible from the internet with no issue?BR
nbsp=3BBR
If thats the case Im wondering if the rule you have set up for that is misc=
onfigured and is routing EVERYTHING no matter the source or dest on that po=
rt to your server.nbsp=3B(i.e.nbsp=3Bits set to an ANY -gt=3B ANY instea=
d of an ANY -gt=3B SERVER1 for port 22 SSH traffic)BR
/body
/html=
--_4f4e8c85-61e6-43a3-811e-693f4641a6d6_--
Nope. It's set correctly.
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Commercial support available - https://portal.pfsense.org
[pfSense Support] Strange DNS problem
Hi Everyone, As of late, pfsense somehow maps dns entries intended for remote hosts to my local samba server. When I try to SSH to a clients network I'm logged into my office file server. I'm not sure what else to write here so if you think you can help me just ask questions. Cheers, Phil
Re: [pfSense Support] Strange DNS problem
On Thu, Oct 8, 2009 at 9:00 PM, Philippe LeCavalier supp...@plecavalier.com wrote: Hi Everyone, As of late, pfsense somehow maps dns entries intended for remote hosts to my local samba server. When I try to SSH to a clients network I'm logged into my office file server. I'm not sure what else to write here so if you think you can help me just ask questions. Please supply more details. This is not really a lot of information to start from. Scott
Re: [pfSense Support] Strange DNS problem
Philippe LeCavalier wrote: On Thu, 2009-10-08 at 21:21 -0400, Scott Ullrich wrote: On Thu, Oct 8, 2009 at 9:00 PM, Philippe LeCavalier supp...@plecavalier.com mailto:supp...@plecavalier.com wrote: Hi Everyone, As of late, pfsense somehow maps dns entries intended for remote hosts to my local samba server. When I try to SSH to a clients network I'm logged into my office file server. I'm not sure what else to write here so if you think you can help me just ask questions. Please supply more details. This is not really a lot of information to start from. Scott Like I said I don't know what other info to supply, when I ssh to a clients network pfsense redirects me to my local server. The strangest thing to me is that even when I use the public IP it does that. If it were just the FQDN I wouldn't really care but this is a true problem for me and I really don't know where to start troubleshooting this. I'm using pfsense 1.2.2 with NAT. The outbound rules are Automatic outbound NAT rule generation. Again, I don't really know what else to post...Everything else works fine, surfing, mail, inbound connections like SSH and FTP. This is a recent problem(about a week or so) and I haven't spent much time troubleshooting it mostly because I have no idea's where to start. Cheers, Phil on the computer you are trying to initiate the ssh session from, telnet hostname. Do you get the correct ip adress? If so, it not a DNS problem.(I would normally advise using dig for troubleshooting dns issues, but I don't know the OS of your computer to know if it already has dig installed) Double check your rules and make sure you are not redirecting outbound port 22 traffic within pfSense back to your internal server. Lyle
