DNS Leak Query

[Kim Puleston]

Hello all,

I have an Asus AC88U which I have running OpenVPN via Torguard and I have the DNS servers in the WAN section of the router set to Torguards DNS servers.

Upon running a DNS Leak test I notice that it picks up the Torguard DNS servers which is fine but then picks up my ISP DNS server as well, not good. So I am wondering if its a config I am not doing correctly within the router or if it is the fact I have a WAN to LAN configuration.

My ISP Router is essentially the Gateway for my ASUS AC88U, however running through a VPN and Torguard DNS servers through that gateway (ISP Router) there should not be a DSN leak showing my ISP DNS Servers.

Any help would be great !

Cheers.

 

[nathajoz]

Try this: in the vpn
In the accept dns configuration set to exclusive

Sent from my Redmi 4 using Tapatalk

 

[Xentrk]

Hello all,

I have an Asus AC88U which I have running OpenVPN via Torguard and I have the DNS servers in the WAN section of the router set to Torguards DNS servers.

Upon running a DNS Leak test I notice that it picks up the Torguard DNS servers which is fine but then picks up my ISP DNS server as well, not good. So I am wondering if its a config I am not doing correctly within the router or if it is the fact I have a WAN to LAN configuration.

My ISP Router is essentially the Gateway for my ASUS AC88U, however running through a VPN and Torguard DNS servers through that gateway (ISP Router) there should not be a DSN leak showing my ISP DNS Servers.

Any help would be great !

Cheers.

I put together a TorGuard setup guide awhile back (links in spoiler) In the instructions for All Traffic, I don't experience DNS Leak when Accept DNS Configuration is set to Exclusive. However, if I have policy rules, I need to change Accept DNS Configuration to Strict. If I don't do this, then AB-Solution ad blocking only works for devices connected to the WAN and not for devices connected to the VPN tunnel. However, this will cause the DNS to leak. I need to update the instructions to note this so people are aware of the trade off. Every once in a while, I try and research a solution.

Having DNS leak does not impact my use case for streaming media though. But still, it bugs me. I tried testing the other night to see if anything changed in 380.68. But I still saw this behavior.

For policy rules, I found I must specify this option in Custom Configuration:
dhcp-option DNS xxx.xxx.xxx.xxx (xxx’s is the IP address of TorGuard DNS Server 1)
dhcp-option DNS xxx.xxx.xxx.xxx (xxx’s is the IP address of TorGuard DNS Server 2)

You may want to try it on your router. When I attempted to update AB-Solution using Policy Rules, I was unable to connect to the AB-Solution server to perform the update and unable to ping the AB Solution server. However, I could connect and ping the AB Solution server on my other router with Redirect Internet traffic set to ALL. The other item that no longer worked was the email function built into AB-Solution. My AB-Solution email settings are the same on the router with Redirect Internet traffic set to ALL, and on the router with Redirect Internet traffic set to Policy Rules. Having the dhcp-option DNS setting in the Custom Configuration section resolved these two issues

It has stumped me for several months now why routing is working this way. Not sure if @Martineau has any insights on this behavior. Or, a script in his tool box that can fix this.

Spoiler: TorGuard Setup Guide

https://www.snbforums.com/threads/t...for-asus-merlin-380-65-380-65_2-part-i.38281/

https://www.snbforums.com/threads/t...or-asus-merlin-380-65-380-65_2-part-ii.38282/

https://www.snbforums.com/threads/t...r-asus-merlin-380-65-380-65_2-part-iii.38283/