What's new

OpenVPN Client & AI Protection - DNS Filtering

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Aaron Payne

New Around Here
I am hoping someone can help. My usecase is simple. I want to tunnel all traffic via the my configured VPN client (configured & working) but retain the DNS filter controls. When I enable the VPN it breaks the AI Protection DNS Filtering rules. I assume this is because the VPN client pushes out new DNS server addresses.

Anyone know how I can accomplish this? I guess I need the router to hour the AI Protection DNS Address and ignore the ones being sent back to the VPN client.
 
Set the Accept DNS Configuration to Disabled in the VPN client settings.

Thanks for your reply but this had no affect.

Under LAN Settings --> DHCP Server --> DNS Server 1 = 8.8.8.8
Advertise Routers IP in addition to specified DNS = NO
Forward local domain queries to upstream DNS = NO

AI Protection --> DNS Filtering
Enable DNS Filtering = ON
Global Filter Mode = "No Filtering"
Then I have a list of specific clients e.g
KidsMac Filter Mode = "Norton Children"
KidsiPad Filter Mode = "Norton Children"
OpenVPN Clients
Accept DNS Configuration = Disabled

If I turn the VPN client Off all filtering works correctly. If I turn the VPN client on filtering does not work, adult website material is accessible from "KidsMac"

Is this a bug or have I missed something?
 
Thanks for your reply but this had no affect.

Under LAN Settings --> DHCP Server --> DNS Server 1 = 8.8.8.8
Advertise Routers IP in addition to specified DNS = NO
Forward local domain queries to upstream DNS = NO

AI Protection --> DNS Filtering
Enable DNS Filtering = ON
Global Filter Mode = "No Filtering"
Then I have a list of specific clients e.g
KidsMac Filter Mode = "Norton Children"
KidsiPad Filter Mode = "Norton Children"
OpenVPN Clients
Accept DNS Configuration = Disabled

If I turn the VPN client Off all filtering works correctly. If I turn the VPN client on filtering does not work, adult website material is accessible from "KidsMac"

Is this a bug or have I missed something?

One additional configuration parameter.

WAN --> WAN DNS Setting --> Connect to DNS Server Automatically = NO
DNS Server 1 = 8.8.8.8

Its seems like the firmware (378.56_2) has a bug where it ignores all local DNS Settings if the VPN client is enabled.
 
One other thought. Maybe AIProtection - DNS Filtering is ignored if a VPNClient is configured.

Can anyone help?
 
Here is the ilpleak data you requested. over VPN it doesn't seem to show any DNS servers.
 

Attachments

  • IP:DNS Detect VPN ENABLED.pdf
    369.8 KB · Views: 875
  • IP:DNS Detect VPN DISABLED.pdf
    650.3 KB · Views: 797

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top