Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Issue: how can I send DNS queries through Wireguard tunnel

    Scheduled Pinned Locked Moved WireGuard
    7 Posts 3 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      moutardefromdijon
      last edited by

      Hi everyone!

      I am trying to send an interface group's DNS queries through my Wireguard tunnel.
      https://ipleak.net shows my WAN address from the DNS leak, and the VPN server's IP as my IP.

      When I set the DNS server to the Wireguard tunnel's IP (10.5.0.2) on the phone, I still have DNS leaks.

      I enabled Skip rules when gateway is down to have a proper killswitch.

      My config is shown below
      Interface groups
      Interface-groups
      Firewall
      FW
      NAT Port Forward
      NAT-port-forward
      Gateway groups
      GW-groups
      NAT Outbound
      NAT

      Can someone tell me what I did wrong?

      Many thanks!

      1 Reply Last reply Reply Quote 0
      • F
        freenode
        last edited by

        Hey! I have similar problem. My case is: If I connect to the wireguard "server" via my cell phone then works fine. But, if I want create a point to point connection between two pfsense firewall, than I can't push the traffic via tunnel. You have web access via tunnel?

        M 1 Reply Last reply Reply Quote 0
        • B
          bcruze
          last edited by

          Apply their dns servers to the devices using the tunnel
          https://support.nordvpn.com/General-info/1047409702/What-are-your-DNS-server-addresses.htm

          M 1 Reply Last reply Reply Quote 0
          • M
            moutardefromdijon @bcruze
            last edited by

            @bcruze Hey, thanks for the reply. I know it's an option, but that would make me lose all the benefits of pfblockerng, so I want to avoid this.

            What I want is my interface to send DNS queries to pfsense, and pfsense to resolve them via the vpn tunnel. Do you know how to do that?

            B 1 Reply Last reply Reply Quote 0
            • B
              bcruze @moutardefromdijon
              last edited by bcruze

              @moutardefromdijon

              for my setup (non Nord). under firewall > nat > outbound > Nat address is the interface for that provider.
              I don't use Hybrid output Nat. I use manual BTW

              M 1 Reply Last reply Reply Quote 0
              • M
                moutardefromdijon @freenode
                last edited by

                @freenode Yes, I have web access via the tunnel. Check that you configured the public and private keys correctly, that's all I can think of.
                You should make a post about it, it's really unrelated to my problem :P

                1 Reply Last reply Reply Quote 0
                • M
                  moutardefromdijon @bcruze
                  last edited by

                  @bcruze I'm not sure what outbound NAT has to do with redirecting DNS queries. Can you explain it to me please? What should I change to redirect the VPN interface's DNS queries through the VPN gateway? Thank you

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.