iPSEC VPN Clients DNS

[jnaughto]

Hello All,

I have an OPNSense 22.1.10 server setup working nicely and I wanted to be able to connect to it with a iPsec VPN on my iphone/ipad.  Now the OPNSense server is my local LAN router as well.  Inside the network it provides DHDP and DNS (tried both Unbound and dnsmasq).  The local Lan works fine.

Next moving to setting up the VPN.   The VPN IP block 192.168.2.0/24 has been setup and I can connect without any issues via both my iPad and Iphone to the VPN.   The only issue is that I cannot for the life of me my iPad to access the OPNSense DNS FIRST rather than whatever DNS servers the iPad/iPhone gets via WiFi. 

I know that I can access my local lan as I can put the local LAN IP addresses into my browser and connect directly to the servers within the LAN.   I also know the the DNS is working fine if I go to my WiFi options on my client and delete all the DNS options that the iPad/iPhone gets via dhcp and statically assign the IP address of my OPNSense router.   Now I can use all my hostnames and everything from within my LAN.   This is annoying at best, and impossible to do on LTE as I cannot change the DNS settings while on Cell.   

I've been fighting with this for hours.  Any assistance would be great.

[jnaughto]

I wouldn't even mind finding an option to force all traffic on my clients through the VPN.   I'll essentially turn it on and off whenever I only need access to my own facilities.