Mods, I will test the config and reply back, so this thread can be closed. Obviously, the OP fails to realize that only they would know the IP addresses of the servers they plan to use...hence, no DNS, NTP routes have been "said."
Anyone else would like to help?
Don't you still have a thread open to inquire about flipping Wireguard tunnels???
That problem is related to this one. If I MAKE ANOTHER PICTURE for you showing "your said routes," then you will be unable to solve your issue in the other thread.
UPDATE: TESTED ON 3 OpenWrt-based and one Ubuntu-based Wireguard server: WAN SENDS NTP, NO DNS LEAKS FROM LAN, NO DNS REQUESTS FROM CLIENTS ON WAN, LAN MACHINES USE DNS SERVERS ON TUNNEL. ALL DEVICES HAVE TIME AND TUNNELS ARE UP.
My servers:
LAN DNS (Private IP on tunnel, will not disclose the RFC1918 /32 IP)
WAN DNS - Google DNS 8.8.8.8/32
WAN NTP: time-b-b.nist.gov (please get IP from https://tf.nist.gov/tf-cgi/servers.cgi)
Default route to tunnel: 0.0.0.0/0
I typed them in where I have given @pjp written instructions 3 times, and pictoral instructions 2 times, it worked! On Ubuntu, I used the corresponding ip route add commands.
I will not make another picture:
- These are my IPs and I will not receive another obdurate response that they're not yours, yet you have not provided them
- It is a security risk for anyone to show you a photo of their exact routes
- It's not hard to type this stuff in, you have an example, if you don't know what the "Add" button on LuCI means without a manual, you should probably re-flash stock firmware
- I think I'm too mature to keep drawing pictures for an adult
- EDIT: to be clear, I added the configs via UCI (command line)...so I have no "picture" to produce unless I logged in to the GUI twice (visually verify then to take the snapshot)...but I'm not sure if he'd accept that as "said config" so I didn't waste my time.
