WireGuard: multiple issues with DNS search order

celzero / rethink-app

DNS over HTTPS / DNS over Tor / DNSCrypt client, WireGuard proxifier, firewall, and connection tracker for Android.

https://rethinkfirewall.com/

Apache License 2.0

2.82k stars 143 forks source link

WireGuard: multiple issues with DNS search order #1639

Open khimaros opened 1 month ago

khimaros commented 1 month ago

the default wireguard app for android supports setting DNS search list by appending ,<domain> to the DNS server address. Rethink doesn't properly parse these (eg. when imported) resulting in DNS resolution failures.

but also, more importantly, Rethink doesn't offer an alternative way to set the search order for DNS resolution. is this something that could be added? either by supporting the ,<domain> syntax or via another knob?

ignoramous commented 1 month ago

Search domains aren't supported, yet (not in WireGuard, not in the VPN tunnel #226).

resulting in DNS resolution failures.

We've since fixed parsing these (even if we don't enforce search domains, yet): https://github.com/celzero/rethink-app/issues/1483#issuecomment-2146238015