Unbound DNS via WAN_VPN tunnel interface

[idleDiplomat]

Hi,

I've been working on making all outbound traffic from specific VLANs go through my VPN provider following this guide by Michael Schnerring.

I got it all working except I cannot get the Unbound DNS traffic to flow through the WAN_VPN interface resulting in DNS leakage.

Problem is that since at least version 24.1.4 it is no longer possible to assign "an IP configuration type to a tunnel interface". Thus making it impossible to statically configure the interface which is a requirement for Unbound to select the WAN_VPN interface via the "Outgoing Network Interfaces" setting.

The author of the guide also commented on this issue in a post about a year ago, but it doesn't look like a solution has found.

I've tried experimenting with different NAT outbound, port forwarding and firewall rules without any luck. Any outbound DNS traffic generated by Unbound is just allowed through the firewall via the auto-generated "let out anything from firewall host itself" without triggering any rules.

Since it worked in the past is should be possible to get it to work again somehow, right?

Any help on this is much appreciated. Thanks!