0

pfSense - Correct setup query

I would just like some clarification on setting up NextDNS with pfSense.

I have a Netgate 6100.

It is running pfblockerng and tailscale.

I have my Windows clients and Ubuntu clients set up using their respective setup process and can see their device name sin the logs.

 

With psSense (version 23.01-RELEASE), what is required to be done?

I currently use the DNS Resolver method and tried the CLI install, but the CLI install says it installed but when you try a nextdms command from the command lione, it is not found.

IS that due to pfblockerng using DNS Resoilve?

 

It is not mentioned in the setup pages, but do you need to set the DNS servers in the

System - General DNS Serves area first?

 

Setting it up ====================

It is best to use the

sh -c 'sh -c "$(curl -sL https://nextdns.io/install)"'

or follow these instructions?

pfSense

Olivier Poitrey edited this page on Dec 15, 2022 · 1 revision

 

  1. Go to Services → DNS Resolver and on the tab General Settings scroll down to the Custom Options box.
  2. Enter the following lines, replacing <your config_id> with your confiugration ID:

 

server:
  forward-zone:
    name: "."
    forward-tls-upstream: yes
    forward-addr: 45.90.28.0#<your config_id>.dns1.nextdns.io
    forward-addr: 2a07:a8c0::#<your config_id>.dns1.nextdns.io
    forward-addr: 45.90.30.0#<your config_id>.dns2.nextdns.io
    forward-addr: 2a07:a8c1::#<your config_id>.dns2.nextdns.io

1 reply

null
    • Martin.1
    • 10 mths ago
    • Reported - view

    So I Uninstalled pfblockerng. 

    I removed the settings from DNS Resolver and turned off unbound (DNS Resolver)in the pfSense box.

    I removed the NextDNS IP addresses from the DNS Server settings on System - General Setup - DNS Server Settings - DNS Servers, so there are NO DNS servers set.

     

    I installed NextDNS via the CLI.

    I found that with a Netgate box, to use the nextdns command you first have to do 'su', then you can do 'nextdns status' etc'

    All is running, but a 'nextdns log' does not work, returns an error status.

    The logs now show Device names, except when they are using IPv6, then it still shows the IPv6 address instead.

Content aside

  • 10 mths agoLast active
  • 1Replies
  • 400Views
  • 1 Following