I have PrivateInternetAccess as my VPN provider installed on a LinkSys WRT32X with OpenWRT 19.07.5.
The problem is that some pages don't appear to be fully loaded and I can't login into email such as gmail. This all started when I upgraded OpenWRt as well as PIA's new DNS services which use private IP's instead of public facing DNS servers.
In my openvpn configuration file I have added the following p/ my vpn providers instructions.
dhcp-option DNS 10.0.0.242
dhcp-option DNS 10.0.0.243
Also, on my linux box behind the router I have the older nameservers that PIA was using before. I'm not sure what should be in /etc/resolv.conf now and wondering which takes precedence, the router DNS or /etc/resolv.conf.
The linux box will look into its resolv.conf to find which nameservers to use.
If the nameserver is the OpenWrt, then the nameservers configured in OpenWrt will be used.
So what should /etc/resolv.conf be in the linux box behind the router so that the DNS configured in the router will be used (in this case, the DNS configured within OpenVPN).
If that is a general-purpose Linux distribution, check:
grep -e ^hosts: /etc/nsswitch.conf
It depends on the NSS config, resolver service, network management service.
Typically you should simply use automatic DNS with DHCP and properly set up the upstream resolvers on the router.
No, but then, that would kind of be defeating the purpose of my VPN.
I'm sure something isn't set right, but don't know what it is. Somehow, even when setting my /etc/resolv.conf to nameserver 127.0.0.1 (which stops any browsing from working), I'm not quite sure how to properly get the DNS settings from OpenVPN to propagate to my linux box.
Whether I use public DNS's or the older pubic facing nameservers from my vpn provider, the results are the same.
Should I be adding any of these nameservers within OpenWRT, like Network -> DHCP and DNS -> DNS forwardings ... or would having them in OpenVPN override all these?
I think that's what I'm asking. How do I setup the upstream resolver on the router? What needs to be done to setup DNS. As I've said above, I've added the following to my openvpn file. These are the internal DNS nameservers of my VPN provider.
dhcp-option DNS 10.0.0.242
dhcp-option DNS 10.0.0.243
I've removed everything from my /etc/resolv.conf file and restarted the interface to the router on my linux box, yet the automation doesn't seem to be happening.
There should be no reference to the old 209.222.18.222 and 209.222.18.218 PIA DNS servers, as these are: if not already/in the process of being decommissioned.
If you have internet access on the linux box, and you've followed the PIA walk-through in adding the dhcp-option DNS 10.0.0.242 and dhcp-option DNS 10.0.0.243 in your ovpn config file, check that your actually using them.
1/ check your system log with reference to the 10.0.0.24x addresses.
2/ if they exist..
FYI: the PIA DNS IP address will not be the same as the PIA IP address (it was the opposite with their old generation network), for example