JTnola

Occasional Visitor
Question:

If I set an OVPN client’s “Accept DNS configuration” settings to DISABLED

and set “Redirect Internet traffic through tunnel” to VPN Director (policy rules)

… will the DNS queries associated with those devices for which VPN director is set to enable use of the VPN client interface be generated using my router’s DNS settings (including DoT) and then get directed through the VPN tunnel? Or do rules generated by VPN director apply only to other (non-DNS) traffic??

thank you!
 
Last edited:

octopus

Part of the Furniture
Question:

If I set an OVPN client’s
“Accept DNS configuration” settings to DISABLED

and set
“Redirect Internet traffic through tunnel” to VPN Director (policy rules)

… will the DNS queries associated with those devices for which
VPN director is set to enable use of the VPN client interface be generated using my router’s DNS settings (including DoT) and then get directed through the VPN tunnel? Or do rules generated by VPN director apply only to other (non-DNS) traffic??

thank you!
 

eibgrad

Part of the Furniture
Part of the problem is that your post is white text on a white background. No one knows it's there unless they happen to look really closely (or perhaps using a dark theme)!

Since you disabled "Accept DNS configuration" on the OpenVPN client, DNSMasq will NOT be reconfigured w/ the VPN provider's push'd DNS servers. That would normally mean a DNS leak, except you apparently have DoT enabled on the WAN. That traffic will also be routed through the WAN, for all clients, whether bound to the WAN or VPN. But since that DNS is encrypted and secure, it doesn't much matter. NOT unless you insist on your ISP being unaware you're using DoT. If you do, then you can explicitly bind the DoT servers to the VPN w/ the VPN Director.

P.S. My DNS monitoring utility would make this obvious.
 

octopus

Part of the Furniture
I don’t see the answer to my question. I’m probably overlooking it/failing to understand. Could you point me more specifically to the info you’re suggesting that I reference?
If you post look like this I take it for a joke. Impossible to understand what your question is.......
Screenshot 2022-07-03 at 07-27-06 OVPN DNS & Policy-based routing question.png
 

octopus

Part of the Furniture
To see the text, you have to highlight it by clicking and dragging your cursor in the post.
Yes, I know but that is a terrible post and chance to get help is relative small. If you want help at least you have to put some effort on it.
 

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top