DNS Doh - openvpn and firefox

Post Reply
blackexpresso
OpenVPN User
Posts: 16
Joined: Wed Dec 19, 2018 10:40 pm

DNS Doh - openvpn and firefox

Post by blackexpresso » Thu Dec 20, 2018 11:05 am

Hi,


I use w10 and openvpn last update.

I use many vpn UDP, TLS1.2 and 1.3.

I use firefox and have tried the Doh Option : network.trr in about:config. set 3 to always use it.

I have input an ip for example 9.9.9.9
and an internet FQDN


When i'm connected into a vpn, all dns trafic is routed by vpn, encrypted and all stay in the vpn.

but for the Doh DNS request from firefox, they aren't blocked.

dnsleaktest.com show first the vpn ip and, extended test, the Doh DNS setted in firefox.

I've try many vpn, all have the issue.

i think the block-outside-dns option should block they.

I've tried with openvpn android too, last version, same thing.

I inform. maybe an issue.

Thanks

Best regards

User avatar
Pippin
OpenVPN Expert
Posts: 381
Joined: Wed Jul 01, 2015 8:03 am

Re: DNS Doh - openvpn and firefox

Post by Pippin » Thu Dec 20, 2018 2:12 pm

If you want to route DNS over the VPN, then disable network.trr

blackexpresso
OpenVPN User
Posts: 16
Joined: Wed Dec 19, 2018 10:40 pm

Re: DNS Doh - openvpn and firefox

Post by blackexpresso » Fri Dec 21, 2018 10:49 pm

Hi,

Thanks to answer.

Yes, vpn users have to do this and disable trr mode. But i was thinking block-oustide-dns should block it, in fact no.

If yes, we will set trr mode to 2 and have in vpn, normal request because Doh will be blocked, and outside the vpn, it can be enable if nothing block it.

Post Reply