DNS requests not being tunneled thru OpenVpn

Hello,

I have a brand new linode and followed the openvpn installation instructions described here including the dnsmasq as I want to tunnel those requests too.

http://library.linode.com/networking/op … 0-maverick">http://library.linode.com/networking/openvpn/ubuntu-10.10-maverick

Everything works from the client except that I can see the DNS request being requested on the client.

Does anybody know why is that?

The client is an XP machine and the TUN/TAP network has priority, I read also somewhere that it might be that my DNS on my linode (dnsmasq) is not working so it's defaulting to the local one.

How can I test that my server dnsmasq is working from the tunnel?

Any info is appreciated

4 Replies

I've actually had the same problem with OpenVPN. If I connect my Windows 7 desktop to my Linode's OpenVPN server, it'll get the Linode DNS servers via DHCP (which is good), but it won't route DNS through the VPN, so the Linode DNS servers don't work (which is bad).

My workaround was to manually specify Google's public DNS for my OpenVPN adapter, but it's still sub-optimal.

@pic.micro23:

Everything works from the client except that I can see the DNS request being requested on the client.

Maybe this?

Unless things have changed drastically recently openvpn is good at following the KISS principle, so there is very little magic involved.

Whether communication with these DNS servers that you have configured your openvpn server to push to the client happens over the tunnel or not should simply come down to the routing table on the client and in turn what routes are pushed by the openvpn server.

If the DNS servers are not on one of the networks that the openvpn server pushes a route for, there is no reason why the client should communicate with it over the tunnel.

Possible solution if this is indeed the issue: Simply add route(s) as appropriate for anything you want tunneled.

Guzpaz, Stever thx a lot for your comments.

I tried changing this the priority in the client and it did not work so that leaves the option that Guzpas said about the DNS not working correcly on the server side.

I research how to change the DSN to be used or ROUTES on the openvpn config.

Thx

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Community Code of Conduct