Netgate SG-1000 microFirewall

Author Topic: dnsmasq/unbound valid configs rejected by pfsense  (Read 72 times)

0 Members and 1 Guest are viewing this topic.

Offline skullnobrains

  • Newbie
  • *
  • Posts: 1
  • Karma: +0/-4
    • View Profile
dnsmasq/unbound valid configs rejected by pfsense
« on: March 07, 2018, 04:58:01 am »
hello all

i'm trying to setup dnsmasq so a single domain is resolvable by other hosts : basically i'd like to be able to set the following settings in dnsmasq's syntax

i tried to set this up both in the custom settings and in the domain overrides but pfsense rejects both ! and # as forwarders addresses

the closest i came up with is
Code: [Select]

which produces NXDOMAIN for domains outside the lan rather than REFUSED as i'd expect
any known ways to get an actual explicit rejection ?


ideally, i'd like to instruct dnsmasq not to listen on the loopback and have unbound resolve queries for the firewall itself, or possibly the opposite
but pfsense won't let me enable unbound on the loopback because it claims there is a port conflict
nevertheless there is none since i instructed dnsmasq not to listen on lo0
any way to force the config ?

thanks for your time

Offline johnpoz

  • Hero Member
  • *****
  • Posts: 15511
  • Karma: +1439/-207
  • Not a pfSense employee, they cannot fire me...
    • View Profile
Re: dnsmasq/unbound valid configs rejected by pfsense
« Reply #1 on: March 07, 2018, 06:49:45 am »
So you want to run forwarder and unbound at same time?  There is a conflict not with the control port of 953 I do believe.
- An intelligent man is sometimes forced to be drunk to spend time with his fools.
- Please don't PM me for personal help
- if you want to say thanks applaud or
1x SG-2440 2.4.2-RELEASE-p1 (work)
1x SG-3100 Delivered 3/19 (work)
1x SG-4860 2.4.2-RELEASE-p1 (home)