Jump to content
Not connected, Your IP: 3.135.205.231
Sign in to follow this  
ThisGuyTrump

DNS filtering to not use AIRVPN's DNS server?

Recommended Posts

Hello guys,

I have recently setup airvpn on my Asus Router using the Merlin Firmware. So far everything is working splendidly.
Now, I am by no mean a network master, but let me present my setup, and then later my question. If you have any suggestion that would improve my setup's efficiency then by all mean let me know!

Setup:

 

  • The router is running the OpenVPN client and was setup using a config file created from the client area of airvpn.
  • The router is tunneling only specific devices in my network, and that was setup using policy based routing. All the devices that I want to be tunneled in there were given static IPs in my dhcp range.
  • The Router is set to use 10.4.0.1 as its primary DNS address and 10.5.0.1 as it's secondary (which fails and loops back to the primary, atleast that's what I understood since the secondary address is used for tcp, and I am on udp)

Now here is the problem. Since I am manually setting the DNS addresses, all the devices that are not being tunneled through the VPN, still use AirVPN's DNS.

First Question. Is that a problem? Is it possible that the devices that use this DNS, while on my ISP IP effectively render my VPN connection useless? Could this be leaking my Real IP by basically linking it to AIRVPN's server?

Second Question: I tried to use the DNS filtering system in merlin. However, it looks like that despite all my efforts, I cannot get it to work. It always uses the AirVPN DNS. Any way to do this ? Basically I want all deviced that are not being tunneled through the VPN to use my normal ISP DNS server (or OpenDNS). Again, I only need this in the case where my first question turns out to be "YES! IT'S DANGEROUS"


Thanks for the help guys!
 

Share this post


Link to post

In Tomato, I used to route-nopull option and manually setup my routes. It only uses Air's DNS if I tell it to. I do actually tell it to as their DNS performs well for me and added OpenNIC DNS servers as backups, which I know work from typing URLs like grep.geek in my browser. Of course, the reason I use route-nopull is to exclude things like my PS4 so I can use remote play(those ports are taken on port forwarding but I have no huge privacy concerns with a game console).

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image
Sign in to follow this  

×
×
  • Create New...