Thanks for your explanation, Michael. Regards.
Adam --- mm...@mykolab.com wrote: From: Michael McConville <mm...@mykolab.com> To: Adam Smith <ken...@dcemail.com> Cc: misc@openbsd.org Subject: Re: OS is leaking DNS Date: Mon, 28 Mar 2016 03:02:12 -0400 Adam Smith wrote: > Relevant info: > > 1. OpenBSD-amd64 snapshot (install59.iso) with sha256sum of > 5e8020ce150e0fba17b1eef7acc8c27d10845288b9d8c82315bd6826dc94669d and > dated March 27, 2016 > (installed OpenBSD as desktop OS) > 2. openvpn-2.3.10 > 3. firefox > 4. enabled DHCP during installation of OS > 5. edit /etc/resolv.conf.tail to include my preferred public DNS servers > 6. computer connects directly to cable modem supplied by ISP, meaning > my machine receives dynamic IP addresses from my ISP > 7. computer is standalone, not part of network > > After my computer is connected to VPN tunnel, I start Firefox and surf > to https://www.dns-oarc.net/oarc/services/dnsentropy where I click on > the button that says "Test My DNS". > > The IP address of my ISP appears in the results. It means that OpenBSD > operating system leaks DNS. > > How to fix the problem, please? See resolv.conf.tail(5). Its contents are *appended* to /etc/resolv.conf, so if your DHCP lease suggests a DNS server, your system will try that one before those listed in /etc/resolv.conf.tail. http://www.DCpages.com
