pfSense not forwarding DNS to concerned VPS

domain-name-system pfsense

Solution 1:

This issue is very well documented in Pfsense with workaround: DNS Rebinding Protections

The DNS forwarder (dnsmasq) uses the option --stop-dns-rebind by default, which rejects and logs addresses from upstream nameservers which are in the private IP ranges. In the most common usage, this is filtering DNS responses received from the Internet to prevent DNS rebinding attacks. Internet DNS responses should never come back with a private IP, hence it's safest to block this.

There are some cases when public DNS servers have private IP address replies by default, though it is not recommended. In those cases, DNS rebinding can be disabled or an override may be placed in the DNS Forwarder Advanced Settings box as follows:

rebind-domain-ok=/mydomain.com/

Note this is automatically overridden for domains in the DNS forwarder's domain override list, as the most common usage of that functionality is to resolve internal DNS hostnames.

Related

DHCP Server with multiple network interfaces and different subnets
Disable or Uninstall Malicious Software Removal Tool on Windows Server KB890830 Automatic Maintenance
Should /usr/local/bin be owned by root?
How does Docker deal with OOM killer and memory limits?
why linux reuse 'time_wait' port?
Fixing starttls verify=fail, verifymsg=unable to get local issuer certificate
How to recover from "Invalid Drive Movement" (HP SmartArray P411)
AWS VPC routing table with both Internet Gateway and NAT Gateway
Miserable performance of Hyper-V storage on CSV
How do I configure a stretch cluster without shared storage between two sites?
Wait for systemd oneshot service to finish
Too many authentication failures for ec2-user