Zarathustra
New Around Here
I have an OPNsense with rules setup to route the majority of my traffic out through the gateway
in
I then setup an external alias with the name
Some example sites I'm having the issue with are Fidelity.com, interactivebrokers.com, bankofamerica.com.
I must be missing a few ip addresses those domains can resolve to.
How can I make this more accurate? Do I need to detect their foreign ips, and redirect those back to their US site?
WAN_VPN, and the sites I specifically override out through WAN. I'm doing this by having unbound setup to forward specific site queries to dnsmasq.in
/usr/local/etc/dnsmasq.conf/dnsmasq-ipset.conf I have domains saved to the file like so:
Code:
ipset=/US-website.com/clearnet
no-resolv
server=1.1.1.1 // set to the same DNS as unboundI then setup an external alias with the name
clearnet in OPNsense, and set a firewall rule for 192.168.1.1 destined for clearnet domains to go out through WAN. This works about 80% of the time, but occasionally, I don't catch the site, and end up getting directed to the foreign site still.Some example sites I'm having the issue with are Fidelity.com, interactivebrokers.com, bankofamerica.com.
I must be missing a few ip addresses those domains can resolve to.
How can I make this more accurate? Do I need to detect their foreign ips, and redirect those back to their US site?
