Forcing all DNS traffic from the LAN to the firewall

Getting Started with IPFire
56

So this is the reason why you commented out those lines with port 853, right?