Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    What's happening? wrong NAT + DNS leak?

    Scheduled Pinned Locked Moved NAT
    1 Posts 1 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • panzP
      panz
      last edited by

      pfsense box:

      WAN
      LAN
      OPT1 (OpenVPN provider)
      OPT2 (OpenVPN road-warrior)

      LAN 192.168.1.0/24
      OPT1 (assigned to Interface: AIRVPN_INTERFACE)
      OPT2 roadwarrior OpenVPN server (assigned to Interface: IPADVPN_INTERFACE): 172.16.0.0/24 –> local 192.168.1.0/24

      General Setup > DNS server
      2 OpenNIC IPs set here (I don't want to use DNS servers from my provider)

      Services: DNS forwarder

      Enable DNS forwarder

      Do not forward private reverse lookups

      Now, the strange problem.

      If I browse the Internet from a machine on the LAN (say 192.168.1.40) it's all just fine: all the traffic goes through AirVPN OpenVPN tunnel and http://ipleak.net/ reports DNS from AirVPN and from the 2 OpenNIC servers. Very good.

      So, i bring my iPad (with OpenVPN client) and connect to my OpenVPN server on the pfsense box. What I want to achieve is redirect iPad's traffic to AIRVPN_INTERFACE and use that to go out to the Net. But I get this strange output from ipleak

      WHAT? I didn't setup any Google DNS!  >:(

      Here's my NAT Outbound screenshot

      I'm going crazy…

      pfSense 2.3.2-RELEASE-p1 (amd64)
      motherboard: MSI C847MS-E33 Micro ATX (with Intel Celeron CPU 847 @ 1.10 GHz) ~ PSU: Corsair VS350 ~ RAM: Kingston KVR1333D3E9S 4096 MB 240-pin DIMM DDR3 SDRAM 1.5 volt ~ NIC: Intel EXPI9301CTBLK (LAN) ~ NIC: D-Link DFE-528TX (CAM) ~ Hard Disk: Western Digital WD10JFCX Red ~ Case: Cooler Master HAF XB ~ power consumption: 21 Watts.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.