[ previous ] [ next ] [ threads ]
 From:  Trevor Merrill <trevor dot merrill at gmail dot com>
 To:  Lonnie Abelbeck <lists at lonnie dot abelbeck dot com>
 Cc:  m0n0wall List <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] PPTP VPN and DNS problem
 Date:  Sun, 18 Nov 2007 14:55:39 -0800
Man I apologize I wrote my email too late at night 8-)

My wording is all wrong what I meant to say is that I want my work  
DNS,, to be the only DNS when PPTP is connected. The DNS address is at my work and that is the one I want to  
use. I guess I will start over and get my wording right. Here is the  
network setup:

laptop -> crappy DLink (LAN 192.168.2.x/24, WAN 192.168.1.x/24) ->  
home monowall firewall (LAN 192.168.1.x, WAN DHCP from ISP) ->  
internet -> work monowall (LAN 192.168.1.x/24, WAN Static IP from ISP)  
-> LAN -> DNS server (

Settings on laptop (OS X Leopard) pertaining to DNS:
VPN Options - Send all traffic over VPN is checked
VPN DNS search domains - work domain is entered under search domains

Settings on Work Monowall pertaining to DNS:
General Setup
DNS - work DNS server is primary DNS, ISP DNSes secondary. "Allow DNS  
list to be overridden...." is unchecked
DNS Forwarder - "Enable DNS forwarder" is unchecked

I added in the domain override for my work domain and no luck.

Sorry for the goof. Thanks for the help.


On Nov 18, 2007, at 11:44 AM, Lonnie Abelbeck wrote:

> Trevor,
> It appears your home network is 192.168.2/24 and work is  
> 192.168.1/24 ?
> You are using OS X's PPTP VPN client to access work's m0n0wall built- 
> in PPTP server?
> 1) You have an important setting on your local VPN client
> Connect -> Options -> "__ Send all traffic over VPN Connection"
> (Leopard might be a little different)
> When checked all your IP traffic is routed through the PPTP tunnel,  
> and your local DNS server will be set to that of the remote  
> m0n0wall's DNS forwarder. (Hence the DNS entry)
> When unchecked, only your IP traffic destination that matches  
> 192.168.1/24 will be routed through the PPTP tunnel, and your local  
> DNS server information is be left alone.
> (launch Terminal and type "netstat -rn" for the routing details.)
> 2) If you check "_x_ Send all traffic over VPN Connection", and you  
> have the work m0n0wall
> DNS forwarder -> "_x_ Enable DNS forwarder"
> and valid DNS servers in
> General Setup -> DNS servers [], [], []
> You should be good to go, except for any other local DNS server on  
> the work LAN.  You should be able to fix that with
> DNS forwarder -> Domain | IP | Description
> priv.example.com | | Local LAN DNS
> If your domain name of the work m0n0wall matches that of your local  
> domain forwarder, things should work out well.  I haven't personally  
> used this last tip so please share if it works.
> Lonnie
> On Nov 17, 2007, at 11:51 PM, Trevor Merrill wrote:
>> So I got a PPTP vpn setup and it works great except for one  
>> thing... local DNS. I am using OS X leopard and have setup the  
>> built in apple vpn client. I notice that when I connect to the vpn  
>> I get two DNS servers: (the monowall router) and  
>> (my DNS for the LAN). I only want the as  
>> a DNS server. I have looked at all the DNS settings and I can't  
>> figure out how I am being assigned as the primary DNS  
>> server. I want to be the primary and only DNS server  
>> for VPN connections. Does anyone have any ideas what setting I  
>> missed?
>> Trevor
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch