From 96e4f042fc6d4bf58d6266427bd31069e1ebbad9 Mon Sep 17 00:00:00 2001 From: Johan Brandhorst-Satzkorn Date: Wed, 30 Oct 2024 19:18:50 +0000 Subject: [PATCH 1/3] backport of commit deaf64cd23ed8e877c1ea56283dbb64b24bda07c --- .../content/docs/api-clients/client-agent.mdx | 16 ++++++++++++++-- 1 file changed, 14 insertions(+), 2 deletions(-) diff --git a/website/content/docs/api-clients/client-agent.mdx b/website/content/docs/api-clients/client-agent.mdx index 69dc5e2771..5fd24daaa1 100644 --- a/website/content/docs/api-clients/client-agent.mdx +++ b/website/content/docs/api-clients/client-agent.mdx @@ -534,12 +534,24 @@ To configure the DNS server(s) to use, use the `override_upstream_dns_servers` c # The DNS servers must be specified as an IP, or an IP:Port. # If no port is provided, port 53 is assumed. # The order of the entries specifies the priority. +# It is recommended to provide both the VPN DNS servers +# and the default DNS servers, so that DNS requests can +# be resolved even when the VPN is not active. override_upstream_dns_servers = [ - "8.8.8.8", - "8.8.4.4:53", + "10.0.0.1", # Example primary VPN DNS server + "10.0.0.2", # Example secondary VPN DNS server + "8.8.8.8", # Fallback default DNS server + "8.8.4.4:53", # Fallback default DNS server with a custom port ] ``` + + +The `override_upstream_dns_servers` will be used for all non-Boundary DNS requests. +If you only provide the VPN DNS servers, the Client Agent will not be able to resolve any DNS requests when the VPN is not active. + + + #### Primary network interfaces By default, the Client Agent creates IPs on the primary network interface to serve its DNS server. From 571e064f2f76a363841aa77d8de35a990b8db7ec Mon Sep 17 00:00:00 2001 From: Johan Brandhorst-Satzkorn Date: Wed, 30 Oct 2024 20:59:28 +0000 Subject: [PATCH 2/3] backport of commit eb73fb7351944e4067a0fd5367b6113eb657edea --- website/content/docs/api-clients/client-agent.mdx | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/website/content/docs/api-clients/client-agent.mdx b/website/content/docs/api-clients/client-agent.mdx index 5fd24daaa1..14ce96fb1d 100644 --- a/website/content/docs/api-clients/client-agent.mdx +++ b/website/content/docs/api-clients/client-agent.mdx @@ -547,7 +547,7 @@ override_upstream_dns_servers = [ -The `override_upstream_dns_servers` will be used for all non-Boundary DNS requests. +The `override_upstream_dns_servers` is used for all non-Boundary DNS requests. If you only provide the VPN DNS servers, the Client Agent will not be able to resolve any DNS requests when the VPN is not active. From 1003b9ffa7fb90e25c8e09b823a141252042abdc Mon Sep 17 00:00:00 2001 From: Johan Brandhorst-Satzkorn Date: Wed, 30 Oct 2024 20:59:36 +0000 Subject: [PATCH 3/3] backport of commit 6de19c3d70d15c739bd38946b08f50b177be6a75 --- website/content/docs/api-clients/client-agent.mdx | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/website/content/docs/api-clients/client-agent.mdx b/website/content/docs/api-clients/client-agent.mdx index 14ce96fb1d..b2b6795578 100644 --- a/website/content/docs/api-clients/client-agent.mdx +++ b/website/content/docs/api-clients/client-agent.mdx @@ -534,7 +534,7 @@ To configure the DNS server(s) to use, use the `override_upstream_dns_servers` c # The DNS servers must be specified as an IP, or an IP:Port. # If no port is provided, port 53 is assumed. # The order of the entries specifies the priority. -# It is recommended to provide both the VPN DNS servers +# We recommended providing both the VPN DNS servers # and the default DNS servers, so that DNS requests can # be resolved even when the VPN is not active. override_upstream_dns_servers = [