Force DNS to LAN PiHole XG Home 19

Question

I had this working in Untangle for years, then switched to OPNsense for a few weeks and got it working, now I've decided to go with Sophos but I'm stuck. (Loving Sophos XG, btw.) 
 
 I have two PiHoles running on my LAN and want to force/redirect all LAN DNS/53 traffic to the PiHoles. I've searched and then tried several settings but I'm stuck - it's not working. I've figured out how to set the DNS for the interface and set the DNS for the DHCP, but some devices ignore those settings. Therefore, I'm trying to create a NAT rule that redirects all DNS/53 LAN traffic to the PiHoles. I'm not sure if there needs to be a NAT and Firewall Rule, or if NAT alone can enforce this, and then how to actually configure those rules?? 
 
 Thank you! 
 JS

rfcat_vk · Answer

Hi joe, 
 please read the attached link, it contains a thread from a previous discussion with lots of pointers to KBAs etc. 
 
 https://community.sophos.com/sophos-xg-firewall/f/discussions/136283/xg-nat-loopback-question 
 if after this you still have issues please advise and I will post screenshots of my NTP firewall and NAT rules. 
 Ian

Force DNS to LAN PiHole XG Home 19

Top Replies