Products Firewalla Gold SE Firewalla Gold Pro Firewalla Gold Plus Firewalla Purple Firewalla Purple SE Firewalla Wi-Fi SD Product Comparison Product Reviews

WireGuard VPN and DNS Resolution

Follow
Avatar
Leonard Leong

I've setup WireGuard VPN server on my Firewalla Purple and configured the client on my phone.  My Firewalla Purple is operating in router mode and I've set it to use a specific DBS server which allows me to bypass some geo-blocked sites.

When I'm outside of my home, I'm able to connect establish a successful VPN connection to my Firewalla Purple.

However I don't think my phone is using the DNS server which I've configured on my Firewalla Purple because I am unable to access the geo-blocked sites when I'm using the WireGuard VPN connection.  When I'm home and on wifi, it works well.

Appreciate any guidance from the gurus here.  Thanks.

0

Comments

4 comments

Sort by Date Votes
  • Avatar
    Firewalla

    How and where did you configure the DNS to bypass geo-block? For example, if it is DoH, you can apply that to WireGuard or OpenVPN segments.

    0
    Comment actions Permalink
  • Avatar
    Leonard Leong

    Not using DoH.  I subscribe to service that provides a DNS server to bypass the geo-block, so I just enter the IP address of the service provider's DNS server in the WAN connection configuration of my Firewalla Purple.

    When at home on Wifi, it works perfectly as I can access geo-blocked sites since it's resolving all DNS requests to the service provider's DNS server.  But when I'm outside using the Wireguard VPN connection, it doesn't work.

    Any ideas on what I'm doing wrong with my Wireguard VPN setup? Thanks.

    0
    Comment actions Permalink
  • Avatar
    Support Team
    • Edited

    1. Can you check if you have enabled any DNS-related features enabled on Wireguard VPN? If any DNS features are used, they will override the DNS server on the WAN settings.

    For example:

      - Family Protect

      - DoH

      - Different DNS settings in Wireguard Network Settings (Network -> Wireguard), If the DNS server is Purple's LAN IP, it's fine, it will auto use WAN's DNS.

     

    2. Or when connected via Wireguard VPN, check if your phone/laptop's public IP is your home's public IP. This is to make sure the traffic did go through VPN.

    You can get your public IP from here: https://www.myip.com/

     

     

    0
    Comment actions Permalink
  • Avatar
    Leonard Leong

    Hi,

    I'm managed to resolve my problem.  What I did was to define the service provider's DNS server IP address on my Firewalla Purple's WAN network configuration, and also on the Wireguard network configuration.

    It's now working as intended when I'm connecting via VPN outside my home.

    Thank you for your kind assistance.

    0
    Comment actions Permalink

Please sign in to leave a comment.

Didn't find what you were looking for?

New post