I am pinging from a client machine. Just to be sure I cleared the DNS cache on another computer and then tried it. Still the live IP.
I have also verified the IP of the DNS server and it is pointed to my pfSense box. _____________________________________________________________________ Ron Lemon Information Technology Manager, Maplewood Computing Ltd. | 800.265.3482 | www.maplewood.com This email message, and any files transmitted with it, are confidential and intended solely for the use of the intended recipient(s). Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply email and destroy all copies of the original message and attachments. -----Original Message----- From: Bruce Walker [mailto:[email protected]] Sent: Friday, November 27, 2009 2:08 PM To: [email protected] Subject: Re: [pfSense Support] Split DNS Setup Ron Lemon wrote: > I have removed TinyDNS and added my overrides to DNS forwarder (which show in > the hosts file). > > I have cleared my dns cache on my workstation and then tried to ping my host > and I still get the public ip not my private one. > > I tried restarting the DNSForwarder then clearing my cache again and I get > the same results. Are you pinging from within your firewall? Try pinging from one of your internal clients; you should see your private name/host entries from there. The firewall *itself* will report upstream names because by default /etc/resolv.conf doesn't get modified to use dnsmasq's lookups. So within the firewall itself is a special case, but that likely isn't important (it's not an issue in two setups I run that sound much like yours). If you really need to make the firewall see your private names, you should read up on dnsmasq's FAQs for the suggested config. You can create /usr/local/etc/dnsmasq.conf and put custom configs in there. They won't get clobbered by firmware upgrades, at least not in 1.2.3, and so far in 2.0. -bmw --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
