Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    DNS issues when OpenVPN client is connected

    Scheduled Pinned Locked Moved OpenVPN
    3 Posts 2 Posters 461 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      DeclanM25
      last edited by

      Hi,

      I'm having some problems with my configuration when i connect to ProtonMail VPN. The VPN connects fine and the computer on the network that is forced to go through the VPN has internet, but when it connects the rest of my network loses DNS and when i stop the service the network works again.

      Here is my OpenVPN Client settings:
      c4e23ebe-97a9-46c7-a7fd-7923f1330f7b-image.png
      2d5d4dcc-8e16-407f-852b-98ac5b6c8984-image.png
      this is all the custom options:
      tun-mtu 1500;
      tun-mtu-extra 32;
      mssfix 1450;
      persist-key;
      persist-tun;
      reneg-sec 0;
      remote-cert-tls server;

      I have this assigned to a Interface
      27f8300c-767a-44a9-9b75-a395cc437bc2-image.png

      Here are my outbound NAT rules just to ensure its forced and only through the vpn
      7d151558-5181-431d-8339-fcd1a733e4af-image.png

      OpenVPN firewall rules
      86f8c1be-9705-47ce-91ae-1f5b9956ab93-image.png

      I don't have any rules under the VPN interface but i dont think i need any, just any any.

      Another thing i will mention is that the dnslookup works on the PFsense but not the clients, the ping looks like it resolves the IP of google but the requests are time out.

      Is there anything i'm missing? i don't understand why its reverse breaking everything, can anyone please help me?

      Thanks in advanced.

      NogBadTheBadN 1 Reply Last reply Reply Quote 0
      • NogBadTheBadN
        NogBadTheBad @DeclanM25
        last edited by NogBadTheBad

        @declanm25 Is Don't Pull Routes unticked ?

        If it isn't ticked the default route for everything is likley to be ProtonMail VPN.

        Screenshot 2021-06-05 at 13.42.58.png

        Andy

        1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

        D 1 Reply Last reply Reply Quote 0
        • D
          DeclanM25 @NogBadTheBad
          last edited by

          @nogbadthebad Yep thats what it needed, god damit :( looked over it so often

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.