https://forum.netgate.com/topic/183193/how-to-setup-dns-properly-with-multiple-wireguard-gateways-and-multiple-subnetsRSS for NodeSun, 07 Jun 2026 20:23:48 GMTWed, 04 Oct 2023 04:12:39 GMT60@netgateuser39384 It depends, for some interfaces I use the external approach. For others I use unbound because of DNSBL with pfBlocker and other local DNS stuff. But even those I finally route them with DoT via a VPN to a privacy focused DNS provider.

]]>https://forum.netgate.com/post/1128408https://forum.netgate.com/post/1128408Wed, 04 Oct 2023 17:31:39 GMT@netgateuser39384 You can't do that. The closest you can get is to only use external DNS and not unbound. So for example in the DHCP server of your LAN you give 9.9.9.9 as the dns server (not pfSense), then you can route this traffic out to the VPN like any other internet traffic.

]]>https://forum.netgate.com/post/1128314https://forum.netgate.com/post/1128314Wed, 04 Oct 2023 07:19:43 GMT