When connecting to wireguard servers from Pifi, the DNS server used should be the one defined in the wireguard config file under the interface section. However, this is not the behavior I’m seeing. In testing the DNS servers, I see multiple cloudflare DNS servers listed, Notably, the DNS server defined in the wireguard config file is ignored. This represents a serious DNS leak. Please note, the same config files when used with the wireguard app or my router do properly use the tunnel DNS. So it’s not the config files, it has something to do with the way PiFi is handling the DNS.
How can I fix this so Pifi uses the tunnel DNS as defined in the interface section of the config file which is the DNS it should be using.
There is indeed a bug when AdGuard is completely off, not just protection disabled, that it is pushing Cloudflare and not VPN DNS on WireGuard
If you want to route with VPN DNS at the moment I suggest enabling AdGuard
With AdGuard enabled - unless Overrule DNS is also turned on which it is not by default - it will always push VPN DNS
So VPN will always use VPN DNS with the stock implementation with AdGuard enabled unless you force AdGuard to run over VPN via Settings > More Settings > VPN Client > Overrule DNS
*Pushing a fix for this issue in the app so should be resolved when approved by App Stores
Thanks so much for the quick fix. You’re awesome. Are you aware of obtanium? It was recommended to me by the devs of one of my other open source apps. I have been using obtanium for some time and it’s fantastic. I love getting my app and updates directly from the source. Please consider adding PiFi app here which makes it really easy to add to obtanium. However, most Apps can be added easily to Obtainium by pasting the source link directly into Obtainium’s “Add App” page. If you can please provide the source link I can add it and get the update now without waiting on the app store approval. Thanks so much!
…“*Pushing a fix for this issue in the app so should be resolved when approved by App Stores”…
23 days have past and I have not seen an app update with this fix pushed on android. This is why I’m hopeful you will decide to offer updates via obtanium.
In the meantime, do you have an ETA on when this update will be available?
Hey, in testing there was some new bugs introduced so it got pushed back till next update
Right now, I’m working flat on finalising the 24.10 firmware which has a lot of demand (introduces Pi 5 mainline support, Pi 5 2Gb + 16Gb model support) - I’m hoping a release of that is very soon - there has been a lot of work on driver support on this new firmware. There are also some new DNS upstream scripts on this build - that independently of the app handle DNS in a different way when the default AdGuard configuration is removed.
I hesitate to say an exact ETA because issues can get thrown up and then it takes longer than expected but hopefully that’s not the case. I’m not sure (or I doubt) obtanium would see updates faster than the popular Google/Apple app stores either way - I’d still want well tested and robust updates regardless of the channel.
