Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

DNS not working under macOS Sierra #10

Open
AlexTawse opened this issue Feb 8, 2017 · 4 comments
Open

DNS not working under macOS Sierra #10

AlexTawse opened this issue Feb 8, 2017 · 4 comments

Comments

@AlexTawse
Copy link

Our present VPN configuration works just fine with Tunnelblick, except for users of macOS Sierra.

It appears that the Rancher DNS nameserver IP address - 169.254.169.250 - is routed differently in Sierra. Instead of traffic to this IP correctly sending over the VPN to the Rancher DNS service, this self-assigned IP fails to send traffic anywhere.

The workaround I am experimenting with is to add the push "redirect-gateway def1" directive to the server config to forcibly route all traffic over the VPN.

I thought it worth raising the issue here as it would be really great if this image was able to support macOS Sierra users using Tunnelblick as a VPN client without any additional configuration.
@maZahaca
Copy link

I have the same issue, did you find any solution how to fix it?

@maZahaca
Copy link

maZahaca commented Feb 14, 2017
edited
Loading

For me actually worked following:
I've replaced a line in entry.sh

push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
push "dhcp-option DNS 169.254.169.250"

That helped with a internet access, but I'm still having issue about search option, so I cannot resolve internal rancher domains :(

From Tunnelblick's log:

WARNING: 'foreign_option_4' = 'dhcp-option SEARCH rancher.internal' ignored
Retrieved from OpenVPN: name server(s) [ 8.8.8.8 8.8.4.4 169.254.169.250 ], search domain(s) [  ] and SMB server(s) [  ] and using default domain name [ openvpn ]
Not aggregating ServerAddresses because running on OS X 10.6 or higher
Setting search domains to 'openvpn' because running under OS X 10.6 or higher and the search domains were not set manually and 'Prepend domain name to search domains' was not selected
Saved the DNS and SMB configurations so they can be restored
Changed DNS ServerAddresses setting from '192.168.10.1' to '8.8.8.8 8.8.4.4 169.254.169.250'
Changed DNS SearchDomains setting from '' to 'openvpn'
Changed DNS DomainName setting from '' to 'openvpn'

@maZahaca
Copy link

Fixed in #11

@maZahaca
Copy link

maZahaca commented Feb 15, 2017
edited
Loading

About this SEARCH options also fixed by adding the line:

push "dhcp-option DOMAIN rancher.internal"

@AlexisDucastel What do you think about adding this as well to the default config?
After that fixes my resolv.conf:

search rancher.internal
nameserver 169.254.169.250
nameserver 8.8.8.8
nameserver 8.8.4.4

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@maZahaca @AlexTawse