DNS doesn't work (SL update?)

Got a problem with Viscosity or need help? Ask here!

ptak

Posts: 3
Joined: Sun Oct 25, 2009 12:26 am

Post by ptak » Sun Oct 25, 2009 6:44 am
Hello,

First: Thanks a lot for Viscosity. I really like it.

After update to SL I've found that my DNS system don't work. First I think that it is my fault, but I've checked everything twice (including support forum here) and still have no idea.

Settings:
SL, VPN to 10.27.0.0/16, connected ok, but no DNS change (scutil --dns reports), resolving local domain hosted by 10.27.0.68 dns doesn't work. Alternate DNS support seems same.
Second VPN to 192.168.0.0/16 looks same.

Log for 192.168.. VPN
Code: Select all
Sat Oct 24 21:30:29 2009: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Sat Oct 24 21:30:29 2009: WARNING: file 'key.key' is group or others accessible
Sat Oct 24 21:30:29 2009: LZO compression initialized
Sat Oct 24 21:30:29 2009: UDPv4 link local: [undef]
Sat Oct 24 21:30:29 2009: UDPv4 link remote: 193.165.227.158:1194
Sat Oct 24 21:30:30 2009: [alik.ermaelan.com] Peer Connection Initiated with 193.165.227.158:1194
Sat Oct 24 21:30:31 2009: TUN/TAP device /dev/tun0 opened
Sat Oct 24 21:30:31 2009: /sbin/ifconfig tun0 delete
Sat Oct 24 21:30:31 2009: NOTE: Tried to delete pre-existing tun/tap instance -- No Problem if failure
Sat Oct 24 21:30:31 2009: /sbin/ifconfig tun0 192.168.2.6 192.168.2.5 mtu 1500 netmask 255.255.255.255 up
Sat Oct 24 21:30:31 2009: /Applications/Viscosity.app/Contents/Resources/dnsup.py tun0 1500 1542 192.168.2.6 192.168.2.5 init
Sat Oct 24 21:30:31 2009: Initialization Sequence Completed

Notice: I'm quite sure, that before SL I have dns server for VPN hardtyped in Ethernet and Airport dns settings. Before SL it works (dns from DHCP and hardtyped both remain in resolv.conf) but now only hardtyped remains, so I want to convince Viscosity to manage DNS.

Have anyone some hint to this? RTFM to some part of docs is enought.

Thanks

James

User avatar
Posts: 2313
Joined: Thu Sep 04, 2008 9:27 pm

Post by James » Mon Oct 26, 2009 9:51 am
Hi ptak,

Try setting the DNS server Viscosity should use manually and see if it makes a difference. To do this, Edit your connection under Viscosity, click on the Advanced tab and add the following line to the advanced commands section. Replace x.x.x.x with the IP address of your DNS server (10.27.0.68?):

dhcp-option DNS x.x.x.x

Then click Save, connect, and run the "scutil --dns" command to see if the DNS server was correctly set.

You may also like to try the latest beta version to see if it makes a difference.

Cheers,
James
Web: https://www.sparklabs.com
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs

ptak

Posts: 3
Joined: Sun Oct 25, 2009 12:26 am

Post by ptak » Mon Oct 26, 2009 10:48 pm
Hi,

adding option dhcp-option DNS x.x.x.x helps. With alternate dns it looks like:
Code: Select all
resolver #1
  domain : praha12.czf
  search domain[0] : openvpn
  search domain[1] : praha12.czf
  nameserver[0] : 10.27.0.68
  nameserver[1] : 10.27.0.3
  order   : 200000

resolver #2
  domain : openvpn
  nameserver[0] : 192.168.1.1
  order   : 100800
...and w/o alternate dns it just replace the first resolver with that from VPN.

First settings (alternate dns) si exacly what I need. Thanks a lot for suggestion - I try handling with dns option for openVPN before, but propably in wrong way.

Last thing I don't understand is why is nessesary to add this option. I think, that "dns support" checkbox should do it for me. I try beta (1.0.7b4) but with no difference. Is there anything that I should check vith VPN server or in logs?

Thanks

ptak

James

User avatar
Posts: 2313
Joined: Thu Sep 04, 2008 9:27 pm

Post by James » Sun Nov 01, 2009 6:48 am
Hi ptak,
Last thing I don't understand is why is nessesary to add this option. I think, that "dns support" checkbox should do it for me. I try beta (1.0.7b4) but with no difference. Is there anything that I should check vith VPN server or in logs?
Your OpenVPN server needs to "push" out the DNS server settings to Viscosity. For example, you should have a command similar to this one somewhere in the server's config file:

push "dhcp-option DNS x.x.x.x"

Cheers,
James
Web: https://www.sparklabs.com
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs

ptak

Posts: 3
Joined: Sun Oct 25, 2009 12:26 am

Post by ptak » Thu Nov 05, 2009 2:23 am
Hi,

That was the problem (no push dns on server). I suppose that it is something that is there in default configuration.

Thanks a lot.
5 posts Page 1 of 1