[kwlug-disc] Systemd resolv issue ...
CrankyOldBugger
crankyoldbugger at gmail.com
Wed Feb 11 16:56:33 EST 2026
I suppose at this point it's safe to share the DNS Haiku:
https://www.cyberciti.biz/humour/a-haiku-about-dns/
On Wed, 11 Feb 2026 at 21:42, Khalid Baheyeldin <kb at 2bits.com> wrote:
> Thanks for the clues ...
>
> Here are the active interfaces:
>
> This is an Ethernet port:
> Note that it says DNS Domain is lan.
> Perhaps that means queries to foo.lan only will go through it?
>
> Link 3 (enp3s0)
> Current Scopes: DNS
> Protocols: +DefaultRoute -LLMNR -mDNS -DNSOverTLS
> DNSSEC=no/unsupported
> Current DNS Server: 192.168.0.1
> DNS Servers: 192.168.0.1
> DNS Domain: lan
>
> The Wireguard interface on the other hand has ~. as below:
>
> Link 12 (wg0)
> Current Scopes: DNS
> Protocols: +DefaultRoute -LLMNR -mDNS -DNSOverTLS
> DNSSEC=no/unsupported
> Current DNS Server: 10.10.0.1
> DNS Servers: 10.10.0.1
> DNS Domain: ~.
> Both are default routes, but the domain is what sticks out.
>
> Is the ~. a wildcard?
> If it is, does that mean "everything"?i.e. that all DNS queries will go
> through the VPN?
> Why did Wireguard force resolveconf to use the -x flag?
>
> I don't want the VPN to be the default DNS.
> I want all DNS queries to go through enps30, and only domains ending with
> .priv to go through wg0
>
>
>
> _______________________________________________
> kwlug-disc mailing list
> To unsubscribe, send an email to kwlug-disc-leave at kwlug.org
> with the subject "unsubscribe", or email
> kwlug-disc-owner at kwlug.org to contact a human being.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20260211/2e11b884/attachment.htm>
More information about the kwlug-disc
mailing list