Hello, I am trying to forward the DNS requests passing through the WAN to the VPN gateway.
I was not able to create a working system using the outbound NAT + firewall rules. Instead I was able to set the VPN gateway as the default one (and have the dns queries go through it).
Does this method have any bad effect? To be considered that I want all the clients to go through that VPN.
Thanks
Hello, I try to clarify my question: setting the VPN wireguard connection as a default gateway, only the traffic toward the external will go through that OR I have to create specific firewall rules to route the traffic between internal subnets or to the internal unbound dns server?
Thanks
No, it's the same as if you use the WAN as default gateway. Special rules are only needed if you do policy routing. In this case you would have to use aliases to get the rule applied to outside destinations only.