Unbound service on NS8

hucky · April 25, 2025, 7:59am

NethServer Version: 8
DNS Service
Is it possible to install on rocky Linux with an ns8 on it the unbound service from rocky to forward to another DNS Server in the LAN? i am so unlucky with the DNS things on NS8 it is so difficult and i search for a solution that the ns8 forwards DNS inquiries to another DNS Server in the Lan.

hucky · April 27, 2025, 6:47am

No one?

mrmarkuz · April 27, 2025, 9:01am

In your case the NS8 samba DNS is running on default DNS port 53 and it’s not possible to run 2 DNS servers on the same port but it should be possible to setup conditional forwarding on the NS8 samba DNS via RSAT tools.

I thought you are using pihole for DNS now and it worked? Why do you want to switch back to NS8 DNS?

hucky · April 27, 2025, 9:26am

True, i use pihole as a DNS in the local net, but for having the full active directory support i have to set from the DHCP the Samba DNS first and so the lokal maschines in the net was not showing up, because the are as entry for local dns in the pihole.

mrmarkuz · April 27, 2025, 9:51am

If the local machines are joined to the domain, the DHCP IP should be published in the samba NS8 DNS.

As you use conditional forwarding on the pihole, the samba DNS should be queried for AD domain queries.

Did you enable Network discovery for the network profile you’re using?

hucky · April 28, 2025, 6:01am

i have a network discovery and this work but per example to reach the firewall by dns, the proxmox server etc. it is not possible by dns just by ip. i did an enry in the forwarding zone of the Samba DNS also but also that doesent work. also the nas everything what is only as DNS on the NS8 is not possible to reach by name just by ip if i switch from the pihole as first dns server, everything works well from the DNS. It seems that also the Samba not accept the entrys what i did in the forwarding zone. nu clue why.

mrmarkuz · April 28, 2025, 12:43pm

As you use pihole as DNS server, you may need to enter the DNS A records for devices using static IPs (like firewall or proxmox) there.

hucky · April 29, 2025, 5:20am

this is what i did, but how i wrote, i have to set 1 DNS Server to NS8 because the AD is not reachable completley but in the AD i dont have the Proxmox or Firewall etc. i did a now a host file to reach it.