The IP addresses shown in the openvpn config file were mine and in no way related to the image from @Blind Raven. From my perspective the image wasn’t needed, @alzho’s comment to use custom DNS tells me the AR150 ignores the config entries.
I see this issue when using expressvpn through the router. DNS stays with the ISP’s router. If I disconnect/reconnect a few times, I can usually get the VPN’s DNS.
I’m not savvy enough to try your fix so hopefully it will be in an update soon.
Hi All. I’ve find out the way to set DNS which push openvpn server. In openvpm profile need to add this:
script-security 2
up /usr/bin/dns_updown_script.sh
down /usr/bin/dns_updown_script.sh
previously check if this script exist in your firmware (tested on 6416 fw 2.255)
This script can also grab dns from openvpn profile if there is “dhcp-option DNS” and save new dns to /tmp/resolv.conf.auto to all wan interface. Dns leak test pass. Hope this will help to somebody.
>>>>push "redirect-gateway def1 bypass-dhcp block-local"
>>>>push "dhcp-option DNS 10.8.0.1"
I don't think these work as they seem to be for the server config and not the client:
--push option
Push a config file option back to the client for remote execution. Note that option must be enclosed in double quotes (“”). The client must specify –pull in its config file.
Also, regarding the script, presumably it needs “dhcp-option DNS” to be set to your preferred servers to work?
And why does it include a “down” section?
Finally, how does this all this differ from what the GLUI “custom DNS” settings?
Any update on the ability to accept the DNS server provided by the OpenVPN server?
At the moment, my situation is the following:
I need to use the DNS server located on the Openvpn server side, which has a private address 192.168.10.X
I can specify this DNS server (192.168.10.X) fine in the Custom DNS, and I can setup the tunnel fine as long as I specify the Openserver IP address by IP and not FQDN.
However, if I am not using the Openvpn tunnel, I cannot resolve anything as the 192.168.10.X address is only reachable via the Openvpn tunnel.
On Windows, the DNS are corretcly injected through the tunnel (as it accepts the pushed DNS servers).
if none of those profiles push a DNS server, how about setup a vps on digital ocean, and have it push a dns server? even if you set it to push a public dns server, at least we can test to see if the push option was accepted.