How to force VPN to use its own DNS in Keenetic?

Y

Yan2021-10-15 21:21:40

network hardware

Yan, 2021-10-15 21:21:40

Keenetic Ultra (KN-1810)

I wanted to set up wireguard for guest networks,
but I still couldn’t understand the setup principle

We have PPOE from the provider
Configured DoH
Configured and enabled wireguard
There are 2 groups in connection priorities: 1 for normal traffic (all checkboxes are checked), 2 only for VPN connection
At the moment everything works as planned.
But if you connect to the guest (the one with VPN only), then when checking, my DNS comes out, which is listed in the DOH tab

Screenshots for clarity

In short Doh > connection type All - VPN works in the guest, but with DNS specified in DOH
Doh > connection type PPoE provider + VPN DNS - VPN connection type - No Internet access, random errors, but everything points to DNS

where to dig?

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

Y

Yan, 2021-10-29
@Slayer_nn

In no way When DoH
is enabled, normal dns do not work
And for WG to work with its own dns, when DoH is turned off, you need to add a route
In my case, the dns address is 10.255.255.1 -> 0.0.0.0 WG interface

D

Drno, 2021-10-15
@Drno

So, what DNS should VPN clients take if the DNS itself is apparently indicated by the kineticist? which takes addresses from DOHa...
Can I specify specific DNS for VPN clients?
Or did I misunderstand?

K

ky0, 2021-10-15
@ky0

The guard has a separate option that tells clients which DNS to use. That's what it's called, by the way Interface -> DNS.