Page 1 of 1

DNS issue

Posted: Sun Feb 09, 2020 2:00 pm
by zkab
I have installed OpenVPN server in pfSense and configured that DNS should be Googles 8.8.8.8 & 8.8.4.4 and not what my ISP gives.
The OpenVPN client is installed on Ubuntu box 18.04.4 LTS.
When I check the client log file I can't see that Google DNS have been used ... how can I be sure that my ISP's DNS have not been used.
grep VPN /var/log/syslog gives me ....

Code: Select all

Feb  9 14:28:19 balder NetworkManager[836]: <info>  [1581254899.2134] audit: op="connection-activate" uuid="b1d702b4-8811-42c7-b82e-b55834d1572c" name="ZKVPN" pid=2044 uid=1000 result="success"
Feb  9 14:28:19 balder NetworkManager[836]: <info>  [1581254899.2212] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",0]: Started the VPN service, PID 3606
Feb  9 14:28:19 balder NetworkManager[836]: <info>  [1581254899.2288] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",0]: Saw the service appear; activating connection
Feb  9 14:28:19 balder NetworkManager[836]: <info>  [1581254899.3236] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",0]: VPN plugin: state changed: starting (3)
Feb  9 14:28:19 balder NetworkManager[836]: <info>  [1581254899.3237] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",0]: VPN connection: (ConnectInteractive) reply received
Feb  9 14:28:19 balder nm-openvpn[3612]: OpenVPN 2.4.4 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on May 14 2019
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7715] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",0]: VPN connection: (IP Config Get) reply received.
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7735] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: VPN connection: (IP4 Config Get) reply received
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7742] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data: VPN Gateway: 5.xxx.yyy.zzz
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7743] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data: Tunnel Device: "tun0"
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7743] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data: IPv4 configuration:
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7743] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data:   Internal Gateway: 192.168.2.1
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7743] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data:   Internal Address: 192.168.2.2
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7743] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data:   Internal Prefix: 24
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7743] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data:   Internal Point-to-Point Address: 192.168.2.2
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7743] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data:   Static Route: 0.0.0.0/0   Next Hop: 192.168.2.1
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7743] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data:   Static Route: 192.168.2.0/24   Next Hop: 0.0.0.0
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7743] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data:   DNS Domain: '(none)'
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7743] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: Data: No IPv6 configuration
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7744] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: VPN plugin: state changed: started (4)
Feb  9 14:28:25 balder NetworkManager[836]: <info>  [1581254905.7770] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",11:(tun0)]: VPN connection: (IP Config Get) complete
Feb  9 14:29:33 balder NetworkManager[836]: <info>  [1581254973.5315] audit: op="connection-deactivate" uuid="b1d702b4-8811-42c7-b82e-b55834d1572c" name="ZKVPN" pid=2044 uid=1000 result="success"
Feb  9 14:29:33 balder NetworkManager[836]: <info>  [1581254973.5423] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",0]: VPN plugin: state changed: stopping (5)
Feb  9 14:29:33 balder NetworkManager[836]: <info>  [1581254973.5424] vpn-connection[0x55bee43f40e0,b1d702b4-8811-42c7-b82e-b55834d1572c,"ZKVPN",0]: VPN plugin: state changed: stopped (6)

Re: DNS issue

Posted: Sun Feb 09, 2020 5:02 pm
by Pippin
On your client you could use dig:

Code: Select all

dig some.web.site +trace

Re: DNS issue

Posted: Mon Feb 10, 2020 10:58 am
by zkab
OK ... this is what I got

$ dig google.com +trace

; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> google.com +trace
;; global options: +cmd
;; Received 51 bytes from 127.0.0.53#53(127.0.0.53) in 0 ms

Re: DNS issue

Posted: Mon Feb 10, 2020 3:21 pm
by Pippin