Luckily WireGuard doesn't have this issue on desktop peers. Although I did run i... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		mise_en_place on May 3, 2024 \| parent \| context \| favorite \| on: DNS traffic can leak outside the VPN tunnel on And... Luckily WireGuard doesn't have this issue on desktop peers. Although I did run into DNS leaking due to my peer config having an exception for my local network address range. The way I resolved that is to setup dnsmasq on the server and set that as my primary DNS. I will say that I wish there was a DisallowedIPs directive. It's fun having to subtract a /24 from 0.0.0.0/0, although there are calculators you can use.

d-z-m on May 3, 2024 | [–]

> Luckily WireGuard doesn't have this issue on desktop peers

for windows split tunnels it still does, I believe.

chgs on May 3, 2024 | [–]

Just have a black hole route for the subnets you don’t want to send to

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact