Hi,
Somehow are pfsense box DNS Resolver (not forwarder, the resolver) is
getting poisoned for some local hostnames sometimes.
I have found three different hosts resolving to
208.91.197.132
on three different occasions. When I query the individual DNS servers only
the pfsense box itself returns this incorrect result. The other nameserver
return the correct result.
I tried enabling Experimental Bit 0x20 Support - made no difference.
I tried disabling the automatic ACLs for DNS and created my own allowing
only local traffic (I didn't know if that fact that we have dual WANs was
confusing the built-in ACLs). This did not fix the issue.
Just now I completely disabled IPv6 in case that was some sort of back way
in to the DNS server. I also set the Unwanted Reply Threshold to 10
million from Disabled. I need to see if these fix the issue.
Otherwise I suppose I will set pfsense to simply act as a forwarder.
Any thoughts on the best method to approach this? I blocked access to the
offending network as well.
Thanks,
--
73
Joe Laffey
_______________________________________________
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold