OpenVPN works but no local DNS
-
I made an account here just to say that this resolved my issue as well. I am running pfSense 2.5.2-RELEASE (amd64) and I could connect to VPN without any trouble but any local DNS wouldn't work to the site I was connected to. Once I removed the DNS Resolver from "All" to manually choosing all of the IPv4 interfaces on the "Network Interfaces" and "Outgoing Network Interfaces" within the DNS Resolver, it just started to work as I would expect.
Maybe there is a bug or something there.
Thanks for listening - hope this can help improve pfSense!
-
@john_galt This also worked for me. Very strange.
-
@johnpoz can confirm the same issue here. Once I changed the Network Interfaces from "All" to selecting all the interfaces and saving, presto! Working.
Time for a bug report I guess.
-
@john_galt Works for me, too. Very strange. (I did find that I had to log out of the VPN and log back in, to see the effect of the changes. And I selected all the devices, except “All”, for just Network Interfaces.)
-
@fadushin very strange.
-
@zoltrix Were you able to submit a bug report? I tried but redmine won’t let me log in, depsite password resets.
-
@fadushin I've moved on to using ZeroTier, so not so much of a concern for me now...
-
@zoltrix I submitted Issue 13041, but it appears that the issue is actually due to the DNS resolver (
unbound) not getting updated when an OpenVPN entry is added (See Issue 12991).I was able to revert Network Interfaces back to "All", and internal DNS resolution is working.
So for anyone out there experiencing this issue, simply try to restart the DNS resolver, and see if that works.
-
Still present. Thanks for the above info. It helped me to resolve the DNS issue.
-
@nrgia bit of a shame hey...
-
I just spent hours beating my head on the wall with the same exact symptoms. Could connect everything was configured right but DNS would time out!
Turned out it was a firewall rule under OpenVPN from the guide I had followed when I manually setup the server. The rule was only allowing TCP traffic from my OpenVPN subnet....
Changing the rule to allow any protocol to any source and any destination has fixed it!
Found the info here --> https://docs.netgate.com/pfsense/en/latest/vpn/openvpn/firewall-rules.html
-
@fadushin +1
-
M madbrain referenced this topic on