OpenVPN: Not all DNS entries get pushed to clients from server. (dnsmasq)

ubuntu domain-name-system openvpn dnsmasq

Solution 1:

I think your setup is going to break or not work:

Your OpenVPN client configuration uses server.foo.com's public address to connect to the OpenVPN server. This address will be looked up prior to establishing the VPN tunnel, obviously.

You're trying to push a DNS entry for server.foo.com with a OpenVPN IP after the tunnel is established with the dnsmasq config. Either the OpenVPN client ignores it (since it already knows about server.foo.com as it had to look it up to establish the tunnel) or it will respect it, and then drop the tunnel because the OpenVPN client configuration will point to a now nonexistent IP address. The latter may likely happen during your OpenVPN session, depending on the TTL of the DNS server for server.foo.com's public IP.

TL;DR: you are basically trying to tell your client conflicting information about server.foo.com. I can't think of a good way to do what you have in mind. An alternative might be to set up a second DNS entry A record vpnserver.foo.com which points to the same IP as server.foo.com, and then change your OpenVPN config to use that.

Related

How to email output of scheduled tasks?
/proc/cpuinfo fails to detect CPU model name
Task Scheduler Cannot Apply My Changes - Adding a User with Permissions
Enabling SSL for Remote Desktop
How to maintain the log source host using logstash
How does Windows hide internal users?
Are Link-Local routes necessary (IPv4)?
How can config squid to use a socks as parent or cascade?
mount using insecure ports for nfs
Stop a task in Windows 2008 Task Scheduler if it runs longer than 15 minutes?
Which linux x86 hardware keystore?
Where does NetworkManager store the domain name for generating resolv.conf?