pfSense DNS redirecting https to insecure http sites

Lexy_UK · July 23, 2024, 6:15pm

I have the latest pfSense CE installed running on a small PC connected to a Netgear 8 port switch. I’ve setup DNS over TLS following Lawrence Systems Youtube tutorial and every seemed fine. The other day whilst browsing online, I noticed that my search engine results would display a link to a HTTPS site but when I click the link my browser blocks me with a warning because I have been redirected to the insecure HTTP site. I did a test on different computers, different browsers etc and I am getting the same result. Below is a screen shot I took. On the left shows the gateway of the switch and the right shows the search result link clearly displays HTTPS but the image below shows the redirected page.

Once clicked I’m clearly redirected to the insecure HTTP site.
Does anyone have an idea why this is happening? Could my switch have been compromised and it’s highjacking my DNS?

LTS_Tom · July 23, 2024, 10:42pm

DNS does not cause site redirects, that is a browser function. Check your plugins & browser settings.

Lexy_UK · July 24, 2024, 1:27pm

Well the strange thing is, I then logged back into pfSense and in each DHCP server under settings - server options - DNS Servers, I typed in the DNS servers manually and then the links worked fine.

P.S. Tom, your pfSense videos have helped me a lot, keep up great work!

Lexy_UK · July 24, 2024, 1:36pm

Below shows on the left, the DNS settings updated on my Mac from pfSense and the right shows the the links now working correctly.