IPFIRE Wiki Force clients to use IPFire's DNS proxy

Security Firewall Rules
1

When trying to setup the force all traffic to DNS I get the following error

“You have to select a single host for DNAT. Groups or networks are not allowed.”
But the Wiki is stating to use a Service Groups “DNS”

I am following the IpfireWiki https://wiki.ipfire.org/configuration/firewall/dns

No Logs to report

IPFire Profile
8e91f07f20c4f23cd3b56b04791c10b8b7f852a6IPFIRE Profile

2

I am guessing you used Option 1 but that option has a bug.

Screen Shot 2020-11-22 at 12.11.38 PM
Screen Shot 2020-11-22 at 12.11.38 PM1724×390 51.5 KB

 
You should use Option 2.

1 Like
3

You can even try the suggestions in Forcing all DNS traffic from the LAN to the firewall