Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
Next revisionBoth sides next revision
docs:guide-user:firewall:fw3_configurations:intercept_dns [2023/10/05 06:43] – [DNS redirection] dns_int.src_ip is redundant since dns_int.src="lan" vgaeteradocs:guide-user:firewall:fw3_configurations:intercept_dns [2023/10/05 06:53] – [DNS forwarding] vgaetera
Line 89: Line 89:
 ==== DNS forwarding ==== ==== DNS forwarding ====
 Set up [[docs:guide-user:base-system:dhcp_configuration#dns_forwarding|DNS forwarding]] to your local DNS server with Dnsmasq. Set up [[docs:guide-user:base-system:dhcp_configuration#dns_forwarding|DNS forwarding]] to your local DNS server with Dnsmasq.
-Configure firewall to exclude the local DNS server from the interception rule.+Assuming the local DNS server is in the same subnet. 
 +Configure firewall to avoid looping.
  
 <code bash> <code bash>
Line 100: Line 101:
 ==== DNS redirection ==== ==== DNS redirection ====
 Avoid using Dnsmasq. Avoid using Dnsmasq.
-Configure firewall to redirect the intercepted DNS traffic to your local DNS server.+Configure firewall to redirect DNS traffic to your local DNS server.
 Move the local DNS server to a separate subnet to avoid masquerading. Move the local DNS server to a separate subnet to avoid masquerading.
  
  • Last modified: 2024/07/10 06:14
  • by lastedit