Giter Club home page Giter Club logo

Comments (4)

Place1 avatar Place1 commented on August 29, 2024

Hey @analogue i'm not too sure what your asking here. Is this related to configuring dns search domains on vpn clients?

from wg-access-server.

analogue avatar analogue commented on August 29, 2024

So let's say my private home network's domain name is .foo and the /etc/resolv.conf has a search foo so that this domain is searched when not specified. The net result is that I can access a host server1.foo as either server1.foo or plain old server1.

This behavior is replicated in openvpn clients by the openvpn server pushing this config request to the client via push "dhcp-option DOMAIN foo".

That means I can be lazy and continue using server1 on my openvpn client and still have it resolve to server1.foo automagically.

This request revolves around replicating this behavior on a wireguard client. I'm forced to always use server1.foo instead of my lazy muscle memory habit of doing server1. This is not such a big deal on clients with a physical keyboard, but saves keystrokes on mobile clients and is somewhat of a creature comfort.

I'm suggesting that wg-access-server pick up search foo from /etc/resolv.conf on the server and do the same as openvpn by pushing that config option (assuming this is possbile) to the wireguard client. Does that make sense?

from wg-access-server.

Place1 avatar Place1 commented on August 29, 2024

I'm not too sure how this could be supported in wg-access-server. Your client's receive a standard wireguard config file and it's up to the official applications to configure the client's DNS settings. There's not push feature here.

Similarly, wireguard client's only support configuration of an upstream DNS server.

We could probably replicate the search feature within wg-access-server's DNS proxy; but i'd prefer not to add bespoke features to the DNS proxy in this case.

I think this is out of scope. Apologies.

from wg-access-server.

tomalexander avatar tomalexander commented on August 29, 2024

On linux I can specify a domain name on the DNS line in my wg-quick config file and it gets added as a search domain. For example:

DNS = 10.44.0.1, default.svc.cluster.local

becomes this in my resolv.conf:

search default.svc.cluster.local
nameserver 10.44.0.1

So I think this feature would just need to either parse /etc/resolv.conf and append to the DNS line or we could just support adding a list of additional DNS line entries from the config similar to how allowedIPs is already handled.

from wg-access-server.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.