pfsense:dns:block_dns_requests
This is an old revision of the document!
PFSense - DNS - Block DNS Requests
Block any DNS requests sent to a host other than the pfSense.
NOTE: Benefits include:
- To prevent various types of malware or DNS hijacking DNS queries.
- Centralized monitoring and logging.
Create a firewall rule to block ALL LAN traffic on port 53 (DNS)
Navigate to Firewall → Rules → LAN.
Add a new firewall rule.
- Action: Block.
- Disabled: Not Checked.
- Interface: LAN.
- Address Family: IPv4.
- Protocol: TCP/UDP.
- Source:
- Invert Match: Not Checked.
- Source: Any.
- Destination:
- Invert Match: Not Checked.
- Destination: Any.
- Destination Port Range - From: DNS (53).
- Destination Port Range - To: DNS (53).
- Log: Not Checked.
- Description: Block DNS to anywhere.
pfsense/dns/block_dns_requests.1619517486.txt.gz · Last modified: 2021/04/27 09:58 by peter