DNS setting stays on WiFi after disconnect Mac Client

emanueltilly · August 23, 2022, 11:36am

I have a issue where my DNS server that I set on the VPN server will stick as the DNS server on my Mac clients after they have been disconnected from the VPN causing issues.

The problem occurs when the end user do not disconnect from the VPN server properly in the client and instead just closes the laptop and goes on with their day.

While I understand that this is not the correct way to disconnect from the VPN server, it will be the way end users do it most of the time no matter what you tell them.

What is the reason behind this issue, and is it something I can do on the server-side to mitigate the issue?

zach · August 23, 2022, 6:28pm

After the issue occurs run the commands below to get the DNS state.

sudo scutil --dns
sudo scutil
> open
> show State:/Network/Global/DNS
> show State:/Network/Pritunl/DNS
> show State:/Network/Pritunl/Restore
> quit

mjaggard · April 25, 2023, 7:39am

I also have this problem.

sudo scutil --dns

DNS configuration

resolver #1
  search domain[0] : home
  nameserver[0] : 10.30.0.2
  flags    : Request A records
  reach    : 0x00000002 (Reachable)

resolver #2
  domain   : local
  options  : mdns
  timeout  : 5
  flags    : Request A records
  reach    : 0x00000000 (Not Reachable)
  order    : 300000

resolver #3
  domain   : 254.169.in-addr.arpa
  options  : mdns
  timeout  : 5
  flags    : Request A records
  reach    : 0x00000000 (Not Reachable)
  order    : 300200

resolver #4
  domain   : 8.e.f.ip6.arpa
  options  : mdns
  timeout  : 5
  flags    : Request A records
  reach    : 0x00000000 (Not Reachable)
  order    : 300400

resolver #5
  domain   : 9.e.f.ip6.arpa
  options  : mdns
  timeout  : 5
  flags    : Request A records
  reach    : 0x00000000 (Not Reachable)
  order    : 300600

resolver #6
  domain   : a.e.f.ip6.arpa
  options  : mdns
  timeout  : 5
  flags    : Request A records
  reach    : 0x00000000 (Not Reachable)
  order    : 300800

resolver #7
  domain   : b.e.f.ip6.arpa
  options  : mdns
  timeout  : 5
  flags    : Request A records
  reach    : 0x00000000 (Not Reachable)
  order    : 301000

DNS configuration (for scoped queries)

resolver #1
  search domain[0] : home
  nameserver[0] : 10.30.0.2
  if_index : 6 (en0)
  flags    : Scoped, Request A records
  reach    : 0x00000002 (Reachable)

sudo scutil
> open
> show State:/Network/Global/DNS
<dictionary> {
  SearchDomains : <array> {
    0 : home
  }
  ServerAddresses : <array> {
    0 : 10.30.0.2
  }
  __CONFIGURATION_ID__ : Default: 0
  __FLAGS__ : 2
  __ORDER__ : 0
}
> show State:/Network/Pritunl/DNS
  No such key
> show State:/Network/Pritunl/Restore
  No such key
> quit

Tracing7565 · January 14, 2024, 9:51am

This problem is haunting our Mac clients for the past year. Any advice on the solution?

zach · January 16, 2024, 8:06am

This should be fixed in the v1.3.3772.10 release.