But, I'm starting to feel that it might be a bit "to many" DNS's involved in my setup and that I might not be doing it in the "correct" way. My idea is to be able to do more fine grained DNS filtering with that for the kids based on their Domain Users. The Active Directory on the domain works fine, internal hostnames work fine and external hosts are resolved correctly.īut, now I was thinking about addin NxFilter to the mix. I had set the DHCP Server on router to give the ip of dc as the first DNS server and then dc uses router as a forwarding DNS for things outside my own network.
Since I have three children in the house it also allows me to apply basic DNS filtering based "protection" against certain "known things" by running BlockerNG and Snort (although I still need more time to configure this). It allows it (and me) to easily add specific hostnames for an ip, reroute stuff etc. For instance server would have issues asking for a DHCP lease from dc if it hadn't started the VM of dc first. Mostly because it's handy to log into the webadmin of pfSense to fix things instead of using Remote Desktop to login to dc and also since dc is a VM and depending on a reboot of its host server might not be up when I need it to. The router is acting as the DHCP server, although I have heard that it's prefered to let dc handle it. I then have another physical machine acting as my router running pfsense ( router). This is a community subreddit so lets try and keep the discourse polite.I have a setup consisting of a physical server ( server) running Ubuntu, on that, a Windows 2016 Server running as a VM serves as a Domain Controller ( dc). This subreddit is primarily for the community to help each other out, if you have something you want the maintainers of the project to see we recommend posting in the appropriate category on our Netgate forum. If you are looking to sell or buy used hardware, please try /r/hardwareswap. If you are looking for help with basic networking concepts, please try /r/homelab or for more advanced, /r/networking.ĭo not post items for sale in this subreddit. Use a search engine like Google to search across the domain:
We have a great community that helps support each other, but we also provide 24x7 commercial support.īefore asking for help please do the following: You can install the software yourself on your own hardware.
You can buy official pfSense appliances directly from Netgate or a Netgate Partner. The pfSense project is a free, open source tailored version of FreeBSD for use as a firewall and router with an easy-to-use web interface.
0 kommentar(er)
