Can't seem to change dns server

Hi all,

No matter what I do, dnsleaktest.com says I’m using cloudflare dns servers.

I’ve tried setting system name-server and/or leaving it blank. I kept dns forwarding to a minimum. No DDNS.

 forwarding {
     allow-from 192.168.0.0/24
     allow-from 192.168.100.0/24
     allow-from 192.168.200.0/24
     cache-size 0
     listen-address 192.168.0.1
     listen-address 192.168.100.1
     listen-address 192.168.200.1
 }

         shared-network-name LAN {
             subnet 192.168.0.0/24 {
                 default-router 192.168.0.1
                 dns-server 192.168.0.1
                 domain-name lan.home.net
                 domain-search lan.home.net
                 lease 86400
                 range 0 {
                     start 192.168.0.9
                     stop 192.168.0.254
                 }

Even when I bring up openvpn tunnel, it’s still getting dns from cloudflare. The DNS pushed from openvpn seems to be ignored:

Mar 14 12:00:32 vyos openvpn-vtun0[2001]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 103.86.96.100,dhcp-option DNS 103.86.99.100,sndbuf 524288,rcvbuf 524288,explicit-exit-notify,comp-lzo no,route-gateway 10.8.1.1,topology subnet,ping 60,ping-restart 180,ifconfig 10.8.1.4 255.255.255.0,peer-id 1,cipher AES-256-GCM'

Yet when I go to a dnsleaktest site, it always says a cloudflare server, such as:

172.69.32.143 	None 	Cloudflare

I’d appreciate any suggestions.

Thanks

Hello @kilroy
Try to configure the required dns server:
set service dns forwarding name-server '208.67.222.222' (OpenDNS for example)

Thanks, it works now.

I made a stupid mistake… when my firefox browser asked me if I wanted to try “DNS over HTTPS” I said sure why not and clicked on it… then later forgot about it…

All of my dns leak tests kept showing connection to cloudflare dns servers DOH!

Oh well, learned that lesson well LOL :smiley: