Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

DNS setup "Setting up a VPC with site-to-site VPN in Hetzner Cloud" #639

Open
thetredev opened this issue Jun 23, 2023 · 4 comments
Open

DNS setup "Setting up a VPC with site-to-site VPN in Hetzner Cloud" #639

thetredev opened this issue Jun 23, 2023 · 4 comments

Comments

@thetredev
Copy link

thetredev commented Jun 23, 2023
edited
Loading

Problem

In that article - https://community.hetzner.com/tutorials/vpc-with-wireguard-pfsense - under Next Steps, the following is listed:

Set up the Bind package with slave zones for all your local DNS zones and use VPC pfSense as nameserver for your VPC machines

Question

How can we do that? Could you please provide a tutorial on how to make pfSense or any router OS the default nameserver for our VPC machines inside Hetzner cloud? I'm struggling to get it working myself.

Example setup on my end

Private network: 10.0.0.0/24
pfSense: 10.0.0.2 with LAN getting 10.0.0.2 and gateway 10.0.0.1 via DHCP
Client (Debian): 10.0.0.3 can ping 10.0.0.2 but nslookup google.com 10.0.0.2 results in:

$ ping 10.0.0.2
PING 10.0.0.2 (10.0.0.2) 56(84) bytes of data.
64 bytes from 10.0.0.2: icmp_seq=1 ttl=63 time=3.44 ms
64 bytes from 10.0.0.2: icmp_seq=2 ttl=63 time=2.87 ms

$ nslookup google.com 10.0.0.2
Server:		10.0.0.2
Address:	10.0.0.2#53

** server can't find google.com: REFUSED
@thetredev thetredev changed the title Setting up a VPC with site-to-site VPN in Hetzner Cloud DNS setup "Setting up a VPC with site-to-site VPN in Hetzner Cloud" Jun 23, 2023
@zoro16
Copy link

zoro16 commented Jul 2, 2024

I am having the same issue

@thetredev
Copy link
Author

@zoro16 thanks for jumping in. I thought I was the only one lol

@zoro16
Copy link

zoro16 commented Jul 8, 2024
edited
Loading

@thetredev It turns out the Firewall Rule for LAN was blocking UDP connections, make sure the rule looks some thing like the following and try again.
Screenshot_2024-07-08_12-50-04

Edit: note that my setup is a bit different than whats in the blog

@thetredev
Copy link
Author

@zoro16 awesome thank you!! That makes sense.

I'm currently running a dedicated server so I don't need this specific setup anymore, but it's good to know. Leaving this issue open just in case someone stumbles upon it and struggles to find a solution.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@thetredev @zoro16