Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Is it possible to conditionally route pfBlockerng through a VPN for an interface?

    Scheduled Pinned Locked Moved DHCP and DNS
    1 Posts 1 Posters 245 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M Offline
      moutardefromdijon
      last edited by moutardefromdijon

      I have setup a Wireguard VPN tunnel, and can route an interface through it.

      The problem is that if I use pfBlockerng's DNS while on that interface, then there is a DNS leak.
      I could route all pfSense traffic through the VPN, but I don't want to because I don't need everything to go through the VPN all the time, and I would lose all Internet if the VPN goes down.
      I want a single interface's DNS to be routed through a VPN (or to 9.9.9.9) and still benefit from pfblockerng's filter. Is this possible?

      I think this can be done by setting the interface's DNS to another pfSense machine routed through that VPN interface, but buying another machine for this feels overkill and costs money.

      Does anyone know how to solve this problem?

      tldr: I want one interface DNS to benefit from being hidden by a VPN and to benefit from pfblockerng.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.