OpenVPN w VPN Policy & DNS Config

Senfsosse · 2021-12-10T14:01:44.514Z

I have a GL-AR750 with an OpenVPN client configured to access my home network.
For convenient use, I configured in luci that DNS queries for my private domain (mydomain.priv) are forwarded to a DNS server in my private network. This was generally working fine.

Now, I need to access a specific DNS domain without going over VPN. So I configured a VPN Domain/IP policy for eactly that: “Do not use VPN for the following” and listed the one domain (mydomain.eu).

But with this VPN policy set up, the previously configured DNS forwarding to my private DNS server stopped working. Host names at my home network cannot be resolved anymore. IP communication is still working.

Does anybody have an idea where to look to resolve this? Thx.

alzhao · 2021-12-11T07:29:46.849Z

If you use domain based policy, the domain need to be solved locally. So it cannot resolve your private domain.

Senfsosse · 2021-12-11T08:04:33.408Z

I’m not sure I understand what you’re saying.

There is a domain abc for which DNS requests shall be sent to an upstream DNS server on the VPN and there is another domain xyz for which traffic must not go over VPN.
These are two rules that should be pretty independent from one another. I don’t see why preventing traffic for domain xyz go over VPN should interfere with name resolution for domain abc being forwarded to a specific DNS server on the VPN.

robotluo · 2021-12-13T01:34:21.296Z

Senfsosse:

I configured in luci that DNS queries for my private domain (mydomain.priv) are forwarded to a DNS server in my private network. This was generally working fine.

Can you share your DNS configuration?

Senfsosse · 2021-12-13T06:13:54.425Z

Can you share your DNS configuration?

What exactly would you like to see? Any specific screenshots? Or can I get the whole picture somewhere on the shell?

robotluo · 2021-12-13T07:33:22.779Z

I would like to know your configuration mode. Do you configure static host or manually fill in DNS Settings? Can you give me some screenshots?

Senfsosse · 2021-12-14T07:00:01.971Z

Hi, here are screenshots of my DNS setup.

Bildschirmfoto vom 2021-12-14 07-55-08628×556 41.6 KB

Senfsosse · 2021-12-14T07:00:32.687Z

And from luci

Bildschirmfoto vom 2021-12-14 07-57-40957×1017 94.5 KB