I replaced a pfsense alix board with routeros on it and i can’t find how to configure a dns zone forward.
The router is used as DNS by the windows clients. The router looks at the request an if it is for *.bla.loc it forwards it to the internal primary active directory server. If it is for some other host/domain it forwards the DNS lookup to DNS from the ISP. This worked for many years.
How can I set this up with routeros? I have configured the DNS cache and i can create A record in it but it seems impossible to add a zone forward.
Following text is displayed on the monowall/pfsense: Below you can override an entire domain by specifying an authoritative DNS server to be queried for that domain.
If pfSense has worked great for years, why did you replace it?
Also, Mikrotik RouterOS is not pfSense. Both have different feature sets. If you liked pfSense, keep using it, otherwise work within the functionality of the whichever software you switch to.
Mikrotik RouterOS does support virtualization for their RouterBoards as well as x86 CPUs with hardware virtualization support enabled. This could allow you to run pfSense inside RouterOS, however I don’t think the Alix boards support hardware virtualization.
You can’t do easily that in RouterOS, there is no native functionality for it.
There was a post a while back from someone that managed to build a layer 7 filter that recognizes the domain in the packet and NATs it to an internal server, maybe you can find that by searching the forum.
Thanks for the tip. Looks like a dirty workaround. I wil try this somewhere in the future more for the fun than the actual goal because it is a bit to dirty.
Maby the wins servers in dhcp servers fixes the client trouble.