You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When using the unbound plugin, creating a redirect rule that redirects IPv6 DNS traffic on port 53 to the loopback address of ::1 on whatever port unbound is set to does not actually allow DNS queries. Firewall permits it just fine and the redirect rules work, Unbound just doesn't respond.
Redirecting ::1#53 to ::1#unboundPort works fine, at least when running dig on the opnsense machine itself. IPv4 redirects to 127.0.01 work fine as well.
To Reproduce
Steps to reproduce the behavior:
Create a redirect rule (LAN interface, any source/port, destination LAN IPv6 port 53, redirect ::1 port [unboundPort]
On a LAN attached device, run "dig google.com @[LAN IPv6]"
Communication error
Change redirect rule to redirect to LAN IPv6 address port [unboundPort]
Run same command
Dig successful
Expected behavior
Unbound to respond on ::1. IPv4 redirect rules to 127.0.0.1 respond just fine.
Describe alternatives you considered
Redirecting to the actual LAN IPv6 address instead of Loopback ::1
Environment
OPNsense 24.7.5_3 (amd64).
The text was updated successfully, but these errors were encountered:
Important notices
Before you add a new report, we ask you kindly to acknowledge the following:
Describe the bug
When using the unbound plugin, creating a redirect rule that redirects IPv6 DNS traffic on port 53 to the loopback address of ::1 on whatever port unbound is set to does not actually allow DNS queries. Firewall permits it just fine and the redirect rules work, Unbound just doesn't respond.
Redirecting ::1#53 to ::1#unboundPort works fine, at least when running dig on the opnsense machine itself. IPv4 redirects to 127.0.01 work fine as well.
To Reproduce
Steps to reproduce the behavior:
Expected behavior
Unbound to respond on ::1. IPv4 redirect rules to 127.0.0.1 respond just fine.
Describe alternatives you considered
Redirecting to the actual LAN IPv6 address instead of Loopback ::1
Environment
OPNsense 24.7.5_3 (amd64).
The text was updated successfully, but these errors were encountered: