OpenVPN Security Advisory: Dec 14, 2018
Action needed: Important update for OpenVPN Access Server

How does iOS interpret pushed DNS servers and search domains?

FAQ

On a split-tunnel, where redirect-gateway is not pushed by the server, and at least one pushed DNS server is present:

For example, the following directive on the server will tell the client to route all DNS requests to 172.16.0.23:

push "dhcp-option DNS 172.16.0.23"

while these directives on the server will only route foo.tld and bar.tld DNS requests to 172.16.0.23:

push "dhcp-option DNS 172.16.0.23"
push "dhcp-option DOMAIN foo.tld"
push "dhcp-option DOMAIN bar.tld"

Note that with redirect-gateway, the above discussion is moot, since all DNS requests are always routed through the VPN regardless of the presence or absence of added search domains.

Have you downloaded your FREE connections yet?

Create your account to get started.

Share