Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Troubleshooting DNS Leak: Running Out of Options

    WireGuard
    1
    2
    73
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      h2oboy
      last edited by

      Hi Everyone,

      I configured Wireguard as a client and have been trying to send the DNS traffic through the VPN tunnel, with zero success :-/.

      I need to use the Custom Options in the DNS Resolver since I use multiple DNS for other interfaces. It seems that once I use the Custom Options in the DNS, it’s not possible to enable forwarding mode, so foward mode is not an option.
      The following configuration can select the expected DNS, but when the view is set to "wgvpn," the DNS goes down.

      I tried using NAT forwarding to forward ports 53 and 853 with no luck. I’m not sure what else to try.

      Thank you for your help

      server:
  verbosity: 3
  # Use specific DNS servers
  access-control-view: 10.25.25.0/24 firstdns
  access-control-view: 10.2.0.2/32 wgvpn

view:
  name: "firstdns"
  # local-zone: "internal.local." static
  forward-zone:
    name: "."
    forward-tls-upstream: yes
    forward-addr: 45.90.33.0

view:
  name: "wgvpn"
  forward-zone:
    name: "."
    forward-tls-upstream: yes
    # Wireguard DNS
    forward-addr: 10.2.0.1

server:include: /var/unbound/pfb_dnsbl.*conf
      H 1 Reply Last reply Reply Quote 0
      • H
        h2oboy @h2oboy
        last edited by

        I forgot to mention that I used https://dnsleaktest.com to test for DNS leaks and configured the browser to use my default resolver.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.