Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - jpns

Pages: [1]
1
I host some services at home, and I use Cloudflare for DNS and to hide my IP address. I use the dynamic DNS client in pfSense to keep the IP up to date with the domain in Cloudflare.

However, when pfSense detects an IP address change and updates the domain in Cloudflare, it also grey-clouds* it. This means my home IP is exposed until I log into Cloudflare and manually orange-cloud the domain again. Obviously, this is not ideal.

I did look at the Cloudflare dynamic DNS API a while ago and I seem to remember it's a single part of the string which can set either orange-cloud, grey-cloud, or do not change. It seems that pfSense is hard coded to grey-cloud.



*grey cloud = Cloudflare provides DNS only, and origin server IP address is exposed
*orange cloud = Cloudflare provides DNS and proxying; all requests to the domain go through Cloudflare and origin server is not exposed

2
DHCP and DNS / DDNS client and Cloudflare
« on: February 15, 2017, 07:14:19 pm »
I'm using the built in DDNS client to update A records at Cloudflare. When pfSense update an IP, it also "grey clouds" the domain. This is ABSOLUTELY not what I want to happen, as I am using Cloudflare to hide the origin server IP address and it is revealed when the domain is grey clouded.

I believe it's possible to set orange/grey cloud with a simple variable on the command line which calls the Cloudflare API however this is not configurable in pfSense. There doesn't seem to be anything Cloudflare can do about it either.

Is it possible that an option can be added to stop this behaviour?

3
Installation and Upgrades / Erroneous duplicated DNS IP warning
« on: May 18, 2016, 11:20:05 pm »
Just updated to 2.3.1-RELEASE from 2.2.6

Now if I try to make any changes in System -> General Setup

I get this error:

Quote
The following input errors were detected:
Each configured DNS server must have a unique IP address. Remove the duplicated IP.

I have two WAN and each has both Google DNS servers 8.8.8.8 and 8.8.4.4 configured as backup.

My assumption is that pfsense is wrongly seeing these as duplicates even though each WAN do not have duplicate DNS servers.

I am using embedded system on APU1D

Pages: [1]