Direct LAN to WAN with DNS but bypass VPN

Started by raybies, May 28, 2021, 05:12:17 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
May 28, 2021, 05:12:17 AM
Hi.

User: n00b
Setup: LAN + VPN + Unbound DNS w/ blocklists, all clients routed through this fine.

Issue: I need to route specific clients directly to WAN. I have done this w/ a FW Rule, however DNS fails, so the client can only access cached DNS records, but nothing new.

There are no port 53 blocks.
The WAN interface is a VDSL modem with DHCP + DNS configured.

Any insights would be appreciated.

Thanks.
May 29, 2021, 01:41:43 PM #1
1) Did you take a look into the log of Unbound DNS? You could increase the log level, or activate the logging of the requested to domains. That could be helpful to see, if and how the client's DNS requests are processed.

2) Is it necessary for the specific clients to use Unbound DNS? Otherwise they could just use a different DNS server.
Print
Go Up Pages1
User actions