A DNS Leaktest package I made for pfSense Project.
Make sure jq is installed. The pfSense package repo should have jq.
Just run which jq, and if not installed, then run pkg install jq.
- Download the
.pkgfile from the most recent release to your pfSense box viascp - Run the
pkg add pfSense-pkg-DNSleaktest-{x.x.x}.pkgcommand viassh.
Note:
Currently, this feature is not being considered by Netgate for addition into the pfSense package repo. More info on why it isn't currently being considered by Netgate:
Redmine: https://redmine.pfsense.org/issues/13821?issue_count=1&issue_position=1 [Rejected, Closed]
PR: pfsense/FreeBSD-ports#1211 [Rejected, Closed]
- GUI can be opened through the "Diagnostics" dropdown in the pfSense Menubar
- Source Interface: Select an egress network interface (such as WAN or VPN Tunnel) to perform the test on
- API Domain: Select the dns leak test API of your choice (currently only bash.ws is supported)
- The results will be displayed to you. If more than one DNS server is detected, it will tell you that DNS may be leaking, so it will be up to you to determine if the DNS servers shown are the ones you intended on using, and if they are trustworthy.
- Based on the results and your assesment of them, take the appropriate steps to remediate if necessary.
- Interface and support for bash.ws dns leak testing
- Strip/Escape User Input in dnsleaktest.sh
- Validate/Sanitize/Escape User Input from dnsleaktest.php
- Add support for other DNS Leak Testing APIs (dnsleaktest.com, etc)
Contributions are welcome. Fork the repo, make your changes, create a diff file, and email the diff file and your GitHub username to luis@moraguez.com. If the changes are approved, you will be added as a contributor to the repo.
If this utility helped you with a project you're working on and you wish to make a donation, you can do so by clicking the donate button that follows. Thank you for your generosity and support!
