I'm back with another question, not entirely sure if it's possible, but it's the last thing I'm trying to get working and can't figure out how I can make it work...
Essentially I now have VPR working how I'd like thanks to help here, [certain devices] = WAN [192.168.1.0/24] subnet = VPN. - Last rule.
The conundrum I face now, here is my local setup
192.168.1.1 - Router (Openwrt/Openvpn)
192.168.1.30 - PiHole - DHCP (192.168.1.100-200) - range - DNS 192.168.1.30 GW 192.168.1.1
The split tunnel works great, I'm trying to figure out if I can make DNS requests from a device routed towards WAN, use cloudflare/ISP whatever external DNS
And any device routed through the VPN request via VPN DNS - But still through the PiHole firstly.
I have a feeling it's complicated due to my setup, as if I put the Pi-Hole through VPN, obviously all DNS requests are from the VPN provider, although if VPR goes into strict, those not forced through the tunnel won't be able to query
And if I route it through the WAN, all DNS requests go via whichever external I set but not the VPN even for devices routed through there.. I guess this is because it's the .1.30 making the request at that point.
I tried adding the PI at top order with an IGNORE thinking with no interface set it might tunnel whichever the device is going, but this didn't seem to work.
Is it do-able keeping the PiHole as internal DNS? I've seen I can use DHCP on the router and selectively use DNS per-device, although if possible I'd like to keep all traffic requests through PiHole, but then respect external DNS by which tunnel the device is going.
Any help would be greatly appreciated again