So I found out the hard way that Peer to Peer modes in opnsense's openvpn module just don't include the dns/domain push options in the resulting server config.
Why is that?
What i'm looking to do is essentially extend my homelab with a VPS. The stuff inside the VPS is to be ringfenced and included within the homelab scope. I thought a peer to peer would be the best option as I can push at least dns from the intranet. The idea is to have a permanent tunnel up (not dependent on a physical user).
Using the Remote method, it implies physical "users", but there aren't any. I suppose I could treat a "user" as a machine and do it that way?
[Not possible to run opnsense inside the VPS either, so making it more important to get the openvpn client config right]
Similar question/answer but no explanation - https://github.com/opnsense/core/issues/3534