search

TechnitiumSoftware / DnsServer

Technitium DNS Server
https://technitium.com/dns/
GNU General Public License v3.0
4.23k stars 417 forks source link

ipv6 not working #1033

Open zs311521 opened 6 days ago

zs311521 commented 6 days ago

Hi,

I have ipv6 all set up on my Local Technitium server. Local queries work, but it cannot forward ipv6 queries properly to my upstream DNS resolver (which is also technitium).

I've enabled all firewall rules and tested ipv6 connectivity to and from, all of that works. The DNS Client can ping AAAA records to my resolver perfectly.

I feel like I am not putting something correctly in DNS Server IPv6 Source Addresses, because as soon as I tick 'prefer ipv6', it does not resolve. The logs on my resolver do not show any ipv6 queries coming in, even though the IP address is enabled for hte firewall (TCP and UDP for relevant ports)

I host the local technitium on a UDM PRO se, and the technitium is in a MACVLAN container on a debian container. I tried inputting the GUA Address of the debian container, as well as the GUA address of the default network in the source address filed - in either case it just doesn't forward properly. Do I need to put in the public ipv6 in there? Not sure how else I can troubleshoot but it just doesn't forward the ipv6 queries through. Once I uncheck, ipv4 works perfectly.

ShreyasZare commented 6 days ago

Thanks for the post. You need to restore all the settings to default since changing these settings will cause more issues. For using forwarder/upstream you just need to enter the IPv6 address in Settings > Proxy & Forwarders section. There is no need to change any other option including "Prefer IPv6" for it to work.

I would also recommend that you test the upstream server using the DNS Client tool that is available on the panel. If that tool is able to query the upstream successfully then it will work without any issue as the forwarder.

zs311521 commented 4 days ago

Thanks for the post. You need to restore all the settings to default since changing these settings will cause more issues. For using forwarder/upstream you just need to enter the IPv6 address in Settings > Proxy & Forwarders section. There is no need to change any other option including "Prefer IPv6" for it to work.

I would also recommend that you test the upstream server using the DNS Client tool that is available on the panel. If that tool is able to query the upstream successfully then it will work without any issue as the forwarder.

Thanks, the client can successfully query the upstream server, but there are no IPv6 requests that come into my dns resolver logs, all through ipv4. I've enabled prefer IPv6 in the dns resolver and this caused dns to be available on ipv4 and IPv6 in leak tests. But no queries from IPv6 from my local technitium. Is this normal?

ShreyasZare commented 4 days ago

Thanks, the client can successfully query the upstream server, but there are no IPv6 requests that come into my dns resolver logs, all through ipv4. I've enabled prefer IPv6 in the dns resolver and this caused dns to be available on ipv4 and IPv6 in leak tests. But no queries from IPv6 from my local technitium. Is this normal?

If you just enter the domain name of the upstream as the forwarder then the DNS server will resolver only its IPv4 address. If you just specify the IPv6 address directly as the upstream then it will be used. Or if you enable Prefer IPv6 then it will resolve both IPv4 and IPv6 addresses and use them.

But no queries from IPv6 from my local technitium.

You need to configure your local DNS server's upstream too the same way so that it uses IPv6 to connect to the upstream server.

Note that resolving AAAA record and having IPv6 connectivity are totally unrelated. You can resolve AAAA record over IPv4 too without any issues.