Adguard settings on OPNsense with Unbound
Under Settings > DNS Settings:
OPNsense - Settings / General:
-
Prefer IPv4 over IPv6: Checked
-
DNS Servers: all empty
OPNsense - Services
-
DHCPv4 / LAN / DNS Servers: All empty for all Interfaces
Unbound
-
Listen Port: 5353
-
DNSSEC: Checked
-
DHCP Registration: Checked
-
DHCP Static Mappings: Checked
-
DNS Cache: Checked, Flush cache
-
Overrides - non set
AdGuard Home
-
Enabled: Checked
-
Primary DNS: Checked
-
Upstream DNS server:
127.0.0.1:5353 [/lan/]127.0.0.1:5353 [//]127.0.0.1:5353 [/168.192.in-addr.arpa/]127.0.0.1:5353 - When using Unbound set cache to 0 (leave empty). In other cases use a cache_size: 4194304
Firewall (each interface, below for LAN)
-
TCP/IP: IPv4+6
-
Protocol: TCP/UDP
-
Source: LAN net
-
Destination: LAN address
-
Dest Port Range: DNS
Geen reacties