"Internal" FTP, OpenVPN client DNS configuration

[rnemec]

Hi all, I have 2 questions (I hope they are not yet answered):

1. I've successfully configured OpenVPN client to connect from my home to my work network. But I am still missing the ability to reconfigure dnsmasq after connect, so it behave like this:
   
   
   • Lets say that Windows domain of my work is mydomain.inside
   • My router has DHCP for LAN enabled with domain "mydomain.inside" in options, so every client in LAN has name in form of <computer>.mydomain.inside
   • I want the DNS queries in form somecomputer.mydomain.inside (or simply somecomputer) to go directly to DNS acquired from OpenVPN server on connect
   • Other addresses like www.google.com should be answered by DNS servers from my ISP (i.e. DNS servers configured for LAN interface)
   • i.e. something like reconfiguring dnsmasq with --server=/mydomain.inside/1.2.3.4 where 1.2.3.4 is DNS sent by OpenVPN
   • Yes, I know about "Accept DNS Configuration" parameter in OpenVPN client configuration, but I am afraid none of its values is doing what I am trying to achieve
     
2. Is it possible to temporarily configure FTP server in router so the internal filesystem of router is accessible? Editing large configuration in vi is terrible...

Many thanks for any response.

 

[TheUntouchable]

For the second point:

Just use WinSCP over SSH No need for FTP, only SSH for the lan side is required.

 

[rnemec]

1st question anyone?

 

[Martineau]

i.e. something like reconfiguring dnsmasq with --server=/mydomain.inside/1.2.3.4 where 1.2.3.4 is DNS sent by OpenVPN

Did you try manually adding the desired server directive 'server=/mydomain.inside/1.2.3.4'
into '/jffs/configs/dnsmasq.conf.add'

then bounce dnsmasq

service restart_dnsmasq

 

[rnemec]

Did you try manually adding the desired server directive 'server=/mydomain.inside/1.2.3.4'
into '/jffs/configs/dnsmasq.conf.add'

That's of course possible, but I was looking for something based of configuration pushed from OpenVPN server, because my organization can change IPs of DNS servers anytime...
On my previous router I had OpenWrt installed and there the "up-down" script receives a lot more parameters, including DNS server IPs pushed by OpenVPN server. Also there is a strange thing, that "down" event of OpenVPN connection sends "init" as last parameter to openvpn-event, can anyone explain it?

 

[Martineau]

That's of course possible, but I was looking for something based of configuration pushed from OpenVPN server, because my organization can change IPs of DNS servers anytime...
On my previous router I had OpenWrt installed and there the "up-down" script receives a lot more parameters, including DNS server IPs pushed by OpenVPN server. Also there is a strange thing, that "down" event of OpenVPN connection sends "init" as last parameter to openvpn-event, can anyone explain it?

The openvpn-event/vpnclientX-route-up scripts can still be used to dynamically update dnsmasq.

Simply extract the VPN DNS from either the VPN clientX.resolv or if using 'EXCLUSIVE' option in the GUI for DNS, then RMerlin copies the VPN DNS IP into the appropriate -t nat DNSVPNx chain in lieu of the DNS being passed to the scripts as a parameter.