Unbound dns through wireguard VPN

Started by FredFresh, July 08, 2024, 10:29:01 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 08, 2024, 10:29:01 PM
Hello, after reading and trying several things i (think) I wasn't succesfull in routingthrough the VPN the unbound dns requests to my external dns service.

I followed the official guide for the wireguard VPN instalation and everything is working.
I also added a second VPN and created a GW group: tier1-VPN1, tier2-VPN2, tier3-WAN. In case the two VPNs don't work I am ok going with the public IP.

Now I would like to route also all the connections directly from the opnsense through that GW group (also to include the unbound dns<->external DNS service connections).

After the opnsense I have a modem which has (obviously) an internal IP address.

Can you kindly suggest how should I proceed?
Thanks
July 16, 2024, 03:04:26 PM #1
You ever got this working?

In the old days you could get this working giving the interface a static IP, but this stopped working a while back.
Since then I have had no luck getting this to work again.
July 17, 2024, 08:42:02 AM #2
Hi, nope...no luck. Unfortunately no one replied on this. I did some test but without results.
July 17, 2024, 09:20:25 AM #3
Thanks for the reply. I also tried a lot of different configuration yet I can't get ti to work.
The annoying thing is that it works fine when using OpenVPN. But not with Wireguard.
August 13, 2024, 11:45:48 PM #4
I'm searching for exactly the same solution - it's really frustrating that nobody is able to offer a solution/alternative, or an explanation why this capability was removed a few years back!
August 14, 2024, 05:36:07 PM #5
Hi,

my request originated from the results of this website https://www.dnsleaktest.com/

The detection of your DNS provider (if different from the one provided by the VPN) cannot be avoided, because it will always be outside of the VPN "cloud" thefore the website will always able to see both your IP (VPN IP) and the IP of the DNS provider. Please see also here https://www.dnsleaktest.com/what-is-a-dns-leak.html

Instead, if you use the DNS provided by the VPN, the website will only see one single IP (both you and the DNS server are behind the same IP), therefore it will not be able to identify it....but in the all the VPN IPs are identified and related to its provider, so the DNS server will be also identified.

In the end, the DNS provider will always be identified...you just need to trust it / choose one with a good privacy policy.
Print
Go Up Pages1
User actions