Opened 5 years ago
Closed 4 years ago
#1224 closed Feature Wish (notabug)
DNS setting is not applying on MacOS
Reported by: | teichholz-allycommerce | Owned by: | jamesyonan |
---|---|---|---|
Priority: | major | Milestone: | |
Component: | Networking | Version: | OpenVPN git master branch (Community Ed) |
Severity: | Not set (select this one, unless your'e a OpenVPN developer) | Keywords: | dns macos |
Cc: |
Description
DNS setting does not seem to be respected at all from the OpenVPN configuration file, or from the server.
Fri Oct 25 09:14:04 2019 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 10.1.0.2,route 10.1.0.0 255.255.0.0,route-gateway 10.10.0.161,topology subnet,ping 1,ping-restart 20,ifconfig 10.10.0.162 255.255.255.224,peer-id 0,cipher AES-256-GCM'
Putting the setting in the openvpn config file doesn't help either.
dhcp-option DNS 10.1.0.2
Tested on 2.4.7 and git revision bb1ea491cd16d11b448342e8287beacae619f980, MacOS 10.14.6
Change History (2)
comment:1 Changed 5 years ago by
Component: | Generic / unclassified → Management |
---|---|
Owner: | set to jamesyonan |
Priority: | critical → major |
Type: | Bug / Defect → Feature Wish |
comment:2 Changed 4 years ago by
Component: | Management → Networking |
---|---|
Resolution: | → notabug |
Status: | new → closed |
Since I never heard back, I am now closing this ticket.
As I said, "naked" OpenVPN does not know how to set DNS info on any platform besides Windows. On MacOS, if you use Tunnelblick, it will do the DNS for you.
Are you using "naked" OpenVPN, or openvpn under the hood of Tunnelblick?
Generally speaking, OpenVPN 2.x has no support for setting up DNS on any platform except Windows (on Windows, we simulate a DHCP server, so we just put DNS info into it).
On Linux, there are some sample scripts in the package (contrib/pull-resolv-conf/client.up and client.down) that will update resolv.conf directly or via
resolvconf
. This does not work on MacOS X, though, and we currently have no scripts for that.Tunnelblick will do this for you (it gets the info from the OpenVPN process it starts via management interface).
OTOH, if we get a working script for "naked OpenVPN", we can include this into contrib/
... since this is really a "we do not have this feature", reclassify as "feature wish"