[SOLVED] I think I have a DNS leak.

Tasgar

My ISP or router seems to be blocking DNS leak test websites. When not connected to the VPN neither my Android phone or my desktop running Manjaro (Arch) Linux  will successfully run tests. All the tests just hang indefinitely or, in the case of ipleak.net, return 100 errors. On public wifi these websites work as normal, VPN or not.

When connected to PIA with the app on Android I can run the tests and there is no leak but I cannot run the tests on Manjaro which suggests my DNS is leaking.

Previously on Debian I added the following 3 lines to my config file to fix the leaks:
script-security 2
up /etc/openvpn/update-resolv-conf
down /etc/openvpn/update-resolv-conf

.... but this will not work on Manjaro because there is no `update-resolv-conf` script inside /etc/openvpn. So how do I fix this?

Edit: Added [SOLVED] tag to title

Max-P

I have no idea why the DNS leak test sites would fail completely when going through your ISP. That is really strange because for these to fail, you'd have to have no DNS in the first place (so you shouldn't be able to visit those sites at all).

I was able to find a copy of the update-resolv-conf script here: https://github.com/masterkorp/openvpn-update-resolv-conf

Not sure how Manjaro sets things up, but if it uses systemd-resolved you'll need to use this one instead: https://github.com/jonathanio/update-systemd-resolved

Tasgar

@Max-P I don't understand it either. I understand the high level protocol for DNS but have no idea how these DNS test websites work.

Anyway, I managed to fix the leak by following the guide you linked for systemd, Thanks.