iOS DNS not being pushed
Posted: Thu Jan 19, 2017 1:57 am
Hi,
We have a working OpenVPN server & connection using MacBooks & Tunnelblicks.
We're trying to enable this via iOS.
Using the same .ovpn file, we can get a connection and connect to a few "behind the VPN" servers that are part of our .com domain (e.g. http://www.dev.frotz.com).
However, when connecting to our internal hosts (e.g. scheduler.frotz.internal), DNS is not resolving --- OpenVPN is not setting DNS properly nor does it appear to be setting the search domain.
Here is the relevant portion of the client .ovpn. Note I've manually added the two dhcp-option strings, and have played a bit with enclosing the values in quotes or not, but nothing seems to actually work. Given that things are working on OSX boxes, I'm inclined to believe the server is performing correctly. Any ideas what we are doing wrong?
dhcp-option DNS "172.16.0.2"
dhcp-option DOMAIN ".frotz.internal"
setenv FORWARD_COMPATIBLE 1
client
proto tcp
remote lb-frotz.com
port 443
dev tun
dev-type tun
ns-cert-type server
reneg-sec 604800
sndbuf 100000
rcvbuf 100000
# NOTE: LZO commands are pushed by the Access Server at connect time.
# NOTE: The below line doesn't disable LZO.
comp-lzo no
verb 3
setenv PUSH_PEER_INFO
We have a working OpenVPN server & connection using MacBooks & Tunnelblicks.
We're trying to enable this via iOS.
Using the same .ovpn file, we can get a connection and connect to a few "behind the VPN" servers that are part of our .com domain (e.g. http://www.dev.frotz.com).
However, when connecting to our internal hosts (e.g. scheduler.frotz.internal), DNS is not resolving --- OpenVPN is not setting DNS properly nor does it appear to be setting the search domain.
Here is the relevant portion of the client .ovpn. Note I've manually added the two dhcp-option strings, and have played a bit with enclosing the values in quotes or not, but nothing seems to actually work. Given that things are working on OSX boxes, I'm inclined to believe the server is performing correctly. Any ideas what we are doing wrong?
dhcp-option DNS "172.16.0.2"
dhcp-option DOMAIN ".frotz.internal"
setenv FORWARD_COMPATIBLE 1
client
proto tcp
remote lb-frotz.com
port 443
dev tun
dev-type tun
ns-cert-type server
reneg-sec 604800
sndbuf 100000
rcvbuf 100000
# NOTE: LZO commands are pushed by the Access Server at connect time.
# NOTE: The below line doesn't disable LZO.
comp-lzo no
verb 3
setenv PUSH_PEER_INFO