Mac openvpn connect client not updating DNS domain suffix

This forum is for admins who are looking to build or expand their OpenVPN setup.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
olafman1
OpenVpn Newbie
Posts: 7
Joined: Thu Dec 06, 2018 1:13 pm

Mac openvpn connect client not updating DNS domain suffix

Post by olafman1 » Tue May 07, 2019 1:52 pm

I'm looking for tips for troubleshooting the DNS domain not updating in /etc/resolv.conf on a Mac client (10.13.6) when using openvpn connect 2.6.0.103 or 2.7.1.100. The DNS servers do update properly, just not the domain suffix. The domain suffix remains the same as what it was prior to connecting to the VPN instead of updating to the server configed push "dhcp-option DOMAIN vpndomain.com".

If I do nothing except downgrade the openvpn connect client to 2.5.0.136, the DNS domain suffix updates properly when I connect to the VPN, and reverts after disconnecting. I do see in the client log on the Mac that the push "dhcp-option DOMAIN vpndomain.com" is there and I even see it in the MacDNSAction log line.

MacDNSAction: FLAGS=F RD=1 SO=5000 DNS=1.1.1.1,1.0.0.1,2606:4700:4700::1111,2606:4700:4700::1001 DOM=vpndomain.com

So the server is delivering the correct config to the client, the client just isn't fully applying the DNS configuration.

olafman1
OpenVpn Newbie
Posts: 7
Joined: Thu Dec 06, 2018 1:13 pm

Re: Mac openvpn connect client not updating DNS domain suffix

Post by olafman1 » Thu Jun 18, 2020 4:56 pm

I am seeing the same thing on Mac OS (10.15.5) and OpenVPN Connect client 3.1.1.1089. Anyone else experience this? I can still go back to OpenVPN connect client 2.5 and the domain suffix updates properly. The same server config updates the domain suffix properly on iOS devices.

Post Reply