OpenVPN DNS Servers are Ignored (Again)

slava · 2020-09-18T23:32:42.280Z

Hello all

The problem is almost identical to OpenVPN DNS Servers are Ignored

The only difference is that I’m using GL-E750 and my solution in the thread above does not work. Any ideas?

Duplicating dnsmasq config for convenience:

# auto-generated config file from /etc/config/dhcp
conf-file=/etc/dnsmasq.conf
dhcp-authoritative
domain-needed
localise-queries
read-ethers
expand-hosts
bind-dynamic
local-service
domain=lan
server=/lan/
dhcp-leasefile=/tmp/dhcp.leases
resolv-file=/tmp/resolv.conf.vpn
dhcp-broadcast=tag:needs-broadcast
addn-hosts=/tmp/hosts
conf-dir=/tmp/dnsmasq.d
user=dnsmasq
group=dnsmasq




bogus-priv
conf-file=/usr/share/dnsmasq/rfc6761.conf
dhcp-range=set:lan,192.168.94.100,192.168.94.249,255.255.255.0,12h

Thanks, Slava

slava · 2020-09-19T22:53:33.167Z

Seems to be working now. Looks like was some kind of a DNS cache issue.

slava · 2020-09-19T22:57:06.347Z

Look like that’s because I changed host name of the router (it’s using local /etc/hosts to resolve the router). Other hosts in my “*.lan” domain are still not working.

Oroville · 2020-09-20T20:50:05.767Z

Use Wire-guard Open Vpn Sucks.

TLI_Mark · 2020-09-21T22:22:55.267Z

I’m trying to set up WireGuard and it chops my internet speeds

slava · 2020-09-22T19:44:50.178Z

Of course it slows down the internet connection (can be applied to all VPN solutions): the CPU does not have enough performance to decrypt traffic on-the-fly.

There is another option: you internet carrier throttles VPN using DPI (but it less likely).

Anyway I’m still open for suggestions on my problem. The issue is that nslookup works fine (if I specify my custom DNS) server:

nslookup  test.lan 10.123.123.1
Server:   10.123.123.1
Address:  10.123.123.1#53

Name:      test.lan
Address 1: 192.168.77.1
*** Can't find test.lan: No answer

but with the default DNS it finds nothing:

nslookup test.lan
Server:   127.0.0.1
Address:  127.0.0.1#53

*** Can't find home.lan: No answer
*** Can't find home.lan: No answer