hostnames of vpn clients not shown on pi-hole

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.

przemekwawa

Regular Contributor
Hi,
I have problem with hostnames beeing not resolved on pi-hole when I am connected over VPN (pi-hole shows IP adress of client, not hostname). I think that there is some problem with configuration on router.
My configuration:
  • RT-AC68U with newest merlin firmware
  • Pi-Hole (and unbound but this does not matter, as only pi-hole knows about it) on raspberry pi in lan
Blocking etc works fine for all clients, only problem is with hostnames of VPN clients (VPN is configured with default 10.8.0.0, vpn clients use proper DNS server of pi-hole/unbound)

Screenshot 2021-06-22 at 10.49.09.png



Screenshot 2021-06-22 at 10.49.05.png



Screenshot 2021-06-22 at 10.48.16.png


Screenshot 2021-06-22 at 10.47.29.png
 

Attachments

  • Screenshot 2021-06-22 at 10.47.29.png
    Screenshot 2021-06-22 at 10.47.29.png
    501.2 KB · Views: 29

ColinTaylor

Part of the Furniture
This is expected behaviour for a tun connection. The VPN client isn't getting it's IP address from dnsmasq and isn't part of the LAN, therefore its name isn't registered in dnsmasq's DNS server.
 

przemekwawa

Regular Contributor
This is expected behaviour for a tun connection. The VPN client isn't getting it's IP address from dnsmasq and isn't part of the LAN, therefore its name isn't registered in dnsmasq's DNS server.
Thank you. I didn't knew that.
Any workaround? tap interface (if yes, I am not sure if I want to make such change...)?
 

ColinTaylor

Part of the Furniture
I don't know of a good solution. A tap connection would probably work but that brings its own issues.

I'm assuming the VPN client is a single device, like a PC or mobile? If it's a LAN to LAN connection you have more options by using the DNS servers on both LANs (local and remote).
 
Last edited:

przemekwawa

Regular Contributor
It’s client server, but have many clients, and that’s why I would like to have better recognition of hostnames and what is blocked/allowed for particular clients.
 

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top