NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Hybrid VPN Setup doesn't work if the "block-outside-dns" is used...
I was able to pick up a XR500 for cheap from a friend so far it it great!
it's in the title, I have to omit this line from my openvpn config or the router won't even attempt to connect to my VPN...
It's a super neat feature (hybridVPN) but I'm not sure if DNS queries are going through my ISP so they can still hoover up all the metadata they want.. Is this just not possible via a router?
Thanks anyone!
(this is for older devices that can't use a VPN directly or DNS over HTTPS)
Thanks for the feedback! In a future version, we've made some big improvements to how Hybrid VPN works and also added the option of a adding a DNS server for the VPN, so that should help with your issue.
We don't have an ETA for this firmware yet as we're still fixing some bugs with it, but it's getting closer so it shouldn't be too long!
7 Replies
- Okay interesting, could you set the DNS of the router to the VPN DNS then put that line back in and see if it works then please?
I will try tonight;
but I'd rather only my VPN devices use the VPN DNS
also wouldn't the DNS queries be sent in the clear rather than through the VPN? I guess only testing will show this.
The "block-outside-dns" line seemed to stop the router even attempting a connection, the log window had no data to show.
But I will test as you ask.
Unfortunately using my VPN DNS in the DHCP options stops all (non-VPN) devices using the internet, as it doesn't seem to work.
I'm guessing that my VPNs DNS isn't available publicly?
The "block-outside-dns" in the cfg still stops the HybridVPN from even trying a connection. (the log stays blank and states disconnected)
I have not tested though that DNS queries are happening outside of the VPN for mapped devices, I just assumed.
I'll have to figure out a test.
EDIT: I made a silly mistake, got the gateway and DNS muddled. The VPN is using googles 8.8.8.8 (but piped through the VPN on desktop using openVPN is fine) so I can't really test what the DNS traffic is doing through the router, would it query through the VPN or directly in the clear?
cheers for help..
I did a DNS Leak Test is showed my ISP DNS server on the VPN device...
So the hybridVPN cannot stop a DNS Leak as I have it currently configured.
EDIT: I changed the DNS on the device its self to 8.8.8.8 and the leak test said I failed but it showed the wrong ip and country, I also tried cloudflare's 1.1.1.1 and I also got a similar result.
So maybe changing the routers DHCP to offer up 8.8.8.8 could automate this.
This isn't my perfect solution but is still very good vs nothing at all, could a DNS block tool be added as a feature for the HybridVPN 🙂
Thanks for help so far
