Ping a Specific Port

Question

Déjà vu

Asked: 2014-04-23 21:02:45 +0800 CST2014-04-23 21:02:45 +0800 CST 2014-04-23 21:02:45 +0800 CST

Openvpn client, force DNS server

772

Our Linux Ubuntu configuration does have a DNS server (Bind 9).
And resolv.conf has its

  nameserver 127.0.0.1

When using openvpn client on that Linux, the nameserver is not changed (by the VPN server) but I would like to set it - only during the VPN session - to another specific DNS server x.y.z.t, by changing the openvpn client config.

Then, when the openvpn session ends, nameserver should be back to 127.0.0.1.

Is there a "clean" way (ie a line in the openvpn client config file) to do that?

(Note: The VPN server config cannot be changed)

5 Answers

Voted

Déjà vu · Answer 1 · 2014-04-23T22:28:54+08:00

Best Answer

Déjà vu

2014-04-23T22:28:54+08:002014-04-23T22:28:54+08:00

After more googling, could find the answer - below if it can help someone.

install resolvconf which can save and restore the resolv.conf config file
add a script to be run by openvpn, in /usr/share/openvpn, named update-resolv-conf. The script determines what should be the new resolv.conf, and how to restore it (see link below)
add

these lines

  script-security 2
  up /usr/share/openvpn/update-resolv-conf
  down /usr/share/openvpn/update-resolv-conf

in the openvpn client config file.

Read on this wiki for more information.

18

I.Am.A.Guy · Answer 2 · 2021-12-29T08:57:29+08:00

I.Am.A.Guy

2021-12-29T08:57:29+08:002021-12-29T08:57:29+08:00

2022 update (Arch Linux)

To set a public dns server and update resolvconf, add the following to your ovpn client profile file:

dhcp-option DNS 1.1.1.1
script-security 2
up /usr/share/openvpn/contrib/pull-resolv-conf/client.up
down /usr/share/openvpn/contrib/pull-resolv-conf/client.down

4

the-wabbit · Answer 3 · 2014-04-23T22:28:05+08:00

the-wabbit

2014-04-23T22:28:05+08:002014-04-23T22:28:05+08:00

Consider using route-up / route-down scripts on your client to alter your configuration on connection setup as you see fit. See the OpenVPN docs on details for how to set this up and which variables you might use in these scripts.

1

Fernando Cejas · Answer 4 · 2018-08-21T08:11:55+08:00

Fernando Cejas

2018-08-21T08:11:55+08:002018-08-21T08:11:55+08:00

This was useful information in order to help me fixing this issue.

I'm an arch linux user and what I saw is that when a Linux client is used with Access Server, this one is unable to alter the DNS settings on the client in question not resolving host as it the stands on OPEN VPN Documentation

I created a script which fixes the problem and with a couple of extra parameters handles openvpn connections via command line.

https://gist.github.com/android10/ee5c3e93dbcf9b7b31e6ee768cbfd477

Here is the main command being executed for the connection:

  nohup openvpn --config $OVPN_FILE_PATH --askpass $OVPN_PRIVATE_KEY_FILE_PATH \
  --script-security 2 \
  --setenv PATH '/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin' \
  --up /etc/openvpn/scripts/update-systemd-resolved \
  --down /etc/openvpn/scripts/update-systemd-resolved \
  --down-pre \
  &>/dev/null &

Any feedback is more than appreciated it.

1

monk · Answer 5 · 2014-08-18T22:26:46+08:00

monk

2014-08-18T22:26:46+08:002014-08-18T22:26:46+08:00

echo "nameserver=w.x.y.z" > /etc/resolv.conf
echo "nameserver=127.0.0.1" >> /etc/resolv.conf

-3

Openvpn client, force DNS server

2022 update (Arch Linux)

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?