Split DNS stops working when activating system wide DNS profile enabling encrypted DNS

Got a problem with Viscosity or need help? Ask here!

HenrikWL

Posts: 2
Joined: Sat Feb 13, 2021 12:52 am

Post by HenrikWL » Sat Feb 13, 2021 12:57 am
Installing the system profile available here: https://paulmillr.com/posts/encrypted-dns/ I am no longer able to resolve DNS lookups that are internal to the VPN network to which I am connecting.

Is there some magic permutation of settings in Viscosity I can use to make this work, or does the system profile installed simply override all DNS resolving and I just can't use it?

James

User avatar
Posts: 2076
Joined: Thu Sep 04, 2008 9:27 pm

Post by James » Sat Feb 13, 2021 1:16 am
Hi HenrikWL,

I'm afraid managed system profiles will override local network settings (by design).

It would likely be possible to alter the managed profile to include your VPN DNS server/s and the domains to be associated with them (I believe the option is named something like Supplemental Match Domains) however I'm afraid I have no idea how well this will work when the VPN connection isn't active. If you're familiar with managed system profiles you could give it a shot and see how it goes.

Now that DoH is in macOS it'll come to OpenVPN connections at some point. Right now there isn't a way to specify or push DoH servers for OpenVPN, but if it isn't something that gets added to the core project it's likely we'll put something together to support it.

Cheers,
James
James Bekkema
Viscosity Developer

Web: http://www.sparklabs.com
Support: http://www.sparklabs.com/support
Twitter: http://twitter.com/sparklabs

HenrikWL

Posts: 2
Joined: Sat Feb 13, 2021 12:52 am

Post by HenrikWL » Sat Feb 13, 2021 1:35 am
Ok, thanks for the quick reply! Looks like it's duct tape hacks until a more robust solution is available then. :lol:
3 posts Page 1 of 1