Business Community > Gateways > Access to internal DNS when using WireGuard
< Gateways

Access to internal DNS when using WireGuard

Access to internal DNS when using WireGuard

Access to internal DNS when using WireGuard
Access to internal DNS when using WireGuard
2026-01-13 17:46:50 - last edited 16 hours ago
Tags: #WireGuard #DNS
Model: ER7412-M2  
Hardware Version:
Firmware Version:

Hi,

 

I'm quite new to Omada setups. I have:

* multiple subnets
* WireGuard access
* configured "LAN DNS" in order to achive split DNS

Everything is working fine. When I'm in one of the configured subnets, the default GW in those nets it running unbound (tested with Nmap) as DNS which does DNS resolution as intended.

My problem: I also want split DNS when connected via WireGuard. But that does not work.

When I connect via VPN with WireGuard listening on 10.10.5.1 and my client having 10.10.5.5, I can reach hosts in other subnets, but not 10.10.5.1 which I thought the DNS server would be running on.  Allowed IPs are set correctly on both client and server side.


My feeling is, TP-Link propably not intend the use case I have. Am I wrong? Does anyone know how this is supposed to work?

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:Access to internal DNS when using WireGuard-Solution
16 hours ago - last edited 16 hours ago

Hi  @bish0p 

 

Thanks for posting here.

 

Currently, LAN DNS can't cross the VPN barrier. You may access the IP address instead.

Wish you a happy life and smooth network usage!  >Omada US Enterprise Beta Program Launch< >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<
Recommended Solution
  0  
  0  
#3
Options
3 Reply
Re:Access to internal DNS when using WireGuard
2026-01-14 09:32:23

Hi  @bish0p 

Thanks for posting in our business forum.

To assist you with this issue, may I ask what is your network topology?

Is the device with LAN (split) DNS connected with the remote Wireguard VPN server?

Is it possible that you can provide the multiple subnets and LAN DNS configuration screenshots of this ER7412-M2 for our reference?

Best Regards! >> Omada EAP Firmware Trial Available Here << >> Get the Latest Omada SDN Controller Releases Here << *Try filtering posts on each forum by Label of [Early Access]*
  0  
  0  
#2
Options
Re:Access to internal DNS when using WireGuard-Solution
16 hours ago - last edited 16 hours ago

Hi  @bish0p 

 

Thanks for posting here.

 

Currently, LAN DNS can't cross the VPN barrier. You may access the IP address instead.

Wish you a happy life and smooth network usage!  >Omada US Enterprise Beta Program Launch< >Get the Latest Omada SDN Controller Releases Here< >Experience the Latest Omada EAP Firmware<
Recommended Solution
  0  
  0  
#3
Options
Re:Access to internal DNS when using WireGuard
14 hours ago

  @bish0p 

 

I tested this over an IPsec VPN

 

I was able to use the sever side gateway as DNS server, but i could not access any configured LAN dns set up at the other end - probably because when setting up the lan dns entries there is no way to enable them for remote IP ranges - they are limited to locally hosted LANs only

 

What i could do was set up lan DNS on the remote side and point it to the main network IPs and that worked

  0  
  0  
#4
Options

Information

Helpful: 0

Views: 417

Replies: 3

Tags

WireGuard DNS
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.