On 2022-09-15, David A. Pocock <da...@sdf.org> wrote: > From the unwind manpage: > >> unwind sends DNS queries to nameservers to answer queries and switches to >> resolvers learned from dhclient(8), dhcpleased(8) or slaacd(8) if it >> detects that DNS queries are blocked by the local network. > > > Perhaps the warning us to let you know that using unwind _may_ still result > in your queries going to a local network's DHCP-provided domain-name-servers?
It is exactly. wg-quick's config file has a way to set the DNS resolver address (which modifies /etc/resolv.conf when bringing the vpn up). The warning is that if you try and use that setting when you have unwind/resolvd running, resolvd will override it. (if unwind is running, resolvd adjusts the file to point at 127.0.0.1 and monitors it, rewriting it when it changes). -- Please keep replies on the mailing list.
