pfSense Gold Subscription

Author Topic: DNS Query Forwarding - Enable Forwarding Mode  (Read 150 times)

0 Members and 1 Guest are viewing this topic.

Offline sidewinder

  • Newbie
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
DNS Query Forwarding - Enable Forwarding Mode
« on: November 27, 2017, 12:45:33 am »
May seem like a dumb question but if I enable dns query forwarding mode under the resolver settings will pfblockerng still parse the block lists, block ads, etc?

The DNS lookups were painfully slow on the network if forwarding is not turned on.

Once "Enable Forwarding Mode" is checked, the DNS lookups fly but I wonder if PFblockerNG is being utilized at all?

Thanks

Offline BBcan177

  • Moderator
  • Hero Member
  • *****
  • Posts: 2554
  • Karma: +797/-5
    • View Profile
    • Click for Support
Re: DNS Query Forwarding - Enable Forwarding Mode
« Reply #1 on: November 28, 2017, 05:30:20 pm »
You can use Unbound in Resolver mode or in Forwarder mode.... Still recommended to use Resolver mode so that you use the Root dns servers... but that's up to you to decide....  Also keep in mind that not all Forwarders support DNSSEC.
"Experience is something you don't get until just after you need it."

 | http://pfblockerng.com | Twitter @BBcan177  | #pfBlockerNG |

Offline sidewinder

  • Newbie
  • *
  • Posts: 4
  • Karma: +0/-0
    • View Profile
Re: DNS Query Forwarding - Enable Forwarding Mode
« Reply #2 on: December 01, 2017, 05:47:07 pm »
You can use Unbound in Resolver mode or in Forwarder mode.... Still recommended to use Resolver mode so that you use the Root dns servers... but that's up to you to decide....  Also keep in mind that not all Forwarders support DNSSEC.

Thanks for this info. The resolver mode was often noticeably slow on some lookups - maybe there is some other config option I have screwed up?