I connect to a WireGuard installed on my VPS. Then I go to a random VPN service marketing page on which I’ll discover that my DNS leaks. And which is correct because I’ve specified DNS = 1.1.1.1 in [Interface] for all the Peers.

In order to avoid DNS leakadge, do I have to a) run DNS server on the a VPS – along with WireGuard, and b) use this one and only it, instead of 1.1.1.1?

But if so, how will this possibly work?

[Peer]
PublicKey = [....;....]
PresharedKey = [......]
Endpoint = wg.my_domain123.com:51820

In order to resolve Endpoint of my VPS to begin with, other DNS server will have to be used – by IP. But there’ll be none because I’ll use a DNS on my VPS instead of 1.1.1.1. In other words, it’ll be a circular dependency.

  • Oisteink
    2·
    8 months ago

    DNS is handled by peer - what kind of leak are you experiencing?

    • salvador@lemmy.worldOP
      11·
      8 months ago

      Go to whoer[.net]. Under the “DNS” label you’ll see, or should do, DNS requests that reveal your real location. Isn’t this a DNS leak?

      • Oisteink
        1·
        8 months ago

        That page gives me varying info, and the only leaks I see are to my forwarders. Also when connected to vpn.

        Do you see any NS discovered in a leak-test that’s not upstream from the vpn exit node? My vpn config is basic, with no DNS= setting and 0.0.0.0/0 as allowed-ip