Messages

1

Virtual private networks / Wireguard setup fail over connection

« on: June 19, 2024, 11:34:12 am »

Hi

I'm routing part of my traffic via proton VPN with policy routing. I used this tutorial https://docs.opnsense.org/manual/how-tos/wireguard-client-proton.html

Now.I want to setup a fail over connection to another ProtonVPN server. Unfortunately this does not seem to be possible with Wireguard. So I'm using a OpenVPN connection for the second tunnel.

Unfortunately I ran into another issue: The tutorial suggested to add the ProtonVPN server as the upstream DNS-Server. This server is only reachable via the Wireguard Tunnel, but not via the OpenVPN connection.(Different IP Segment).
I tried to remove the upstream DNS config and set the outgoing interface for unbound to my Wireguard tunnel, but with this setup unbound can't resolve anything. It looks like unbound can't properly route via the Wireguard interface if it tries to reach a public IP.

What did I wrong?

2

General Discussion / Unbound ignores outgoing interface

« on: June 06, 2024, 06:29:15 am »

Hey

I have a Wireguard tunnel with conditional (firewall rule based) routing. I would like to force unbound through the tunnel. I'm used to pfsense configuration. All I had to do there was setting the "Outgoing Network Interfaces" in unbound. On my opnsense configuration this option does nothing. The requests are still send via the default/wan interface.

What did I miss.

3

Virtual private networks / DNS-Server option on a Wireguard instance

« on: June 06, 2024, 06:09:47 am »

Hey

What does the DNS-Server option on a Wireguard instance configuration do? I know what it does when set on the client, but what happens exactly when I set it on the opnsense?