Skip to main content

Configuring DNS for Reports on OPNsense

On DNS Enrichment page, Zenarmor provides the following DNS enrichment options for reports:

  • Configuring a DNS server for reverse IP lookups
  • Performing Reverse DNS queries for local IP addresses in real-time
  • Using OPNsense Host aliases

Zenarmor DNS Enrichment for Reports

Figure 1. DNS Enrichment for Reports

To access the DNS Enrichment page, you can navigate to ZenarmorSettingsDNS Enrichment on your OPNsense UI:

Setting Up DNS Enrichment for Reports

You may define local or external DNS servers for reverse IP lookups to resolve hostnames for the reports.

To resolve hostnames for reports, you may follow the steps listed below:

  1. Click on +Add DNS Server IP address button in the DNS Enrichment for Reports pane.

  2. Enter the DNS server IP address to be used for reverse IP lookups in the DNS server IP addresses field. You can specify local or external DNS servers for reverse IP lookups.

  3. Click Submit button to save the DNS server IP address.

DNS Server IP Address Settings on Zenarmor

Figure 2. DNS Server IP Address Settings

After setting up a DNS server IP address for enrichment, you can change the DNS server IP address by following the next steps:

  1. Click on the DNS Server IP address that you want to change. This will open a dialog box.

  2. Type new DNS server IP address which will be used for reverse IP lookups.

  3. Click on Submit to save the changes.

To remove the DNS server IP address, you may follow the given steps listed below:

  1. Click on the Delete button with X icon next to the IP address. This will open a dialog box.

  2. Click Remove button for confirming the deletion of the DNS server IP address.

Enabling/Disabling Real-time Reverse DNS Queries

Enabling the real-time DNS reverse queries option will allow you to obtain the hostname of each IP address on your local network. To retrieve hostnames, Zenarmor employs MDNS and LLMNR packets.

In the DNS Enrichment for Reports pane, click the related toggle button to enable or disable the Perform real-time DNS reverse queries for local IP addresses feature.

note

To be able to perform real-time DNS reverse queries for local IP addresses, you need to have a premium Zenarmor edition.

Using OPNsense Host aliases for DNS enrichment

You may use OPNsense Host Aliases for DNS enrichment. When this feature is enabled, the alias name will be used in reports when a hostname cannot be obtained by a reverse DNS lookup.

Click on the related toggle button to enable/disable the Use OPNsense Host aliases for DNS enrichment feature in the DNS Enrichment for Reports page.